Описание
SQL injection vulnerability in Amazing Flash AFCommerce Shopping Cart allows remote attackers to execute arbitrary SQL commands via the search field. NOTE: the vendor has disputed this issue, stating "if someone were to type in any sql injection code, that code would never be queried.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:amazing_flash_commerce:afcommerce_shopping_cart:*:*:*:*:*:*:*:*
EPSS
Процентиль: 78%
0.01119
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
** DISPUTED ** SQL injection vulnerability in Amazing Flash AFCommerce Shopping Cart allows remote attackers to execute arbitrary SQL commands via the search field. NOTE: the vendor has disputed this issue, stating "if someone were to type in any sql injection code, that code would never be queried."
EPSS
Процентиль: 78%
0.01119
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other