Описание
A vulnerability was found in Codezips Online Shopping Website 1.0. It has been rated as critical. This issue affects some unknown processing of the file /cart_add.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Ссылки
- Exploit
- Permissions Required
- Permissions Required
- Third Party Advisory
- Exploit
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:codezips:online_shopping_website:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 25%
0.00084
Низкий
7.3 High
CVSS3
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-74
CWE-89
Связанные уязвимости
CVSS3: 7.3
github
6 месяцев назад
A vulnerability was found in Codezips Online Shopping Website 1.0. It has been rated as critical. This issue affects some unknown processing of the file /cart_add.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
EPSS
Процентиль: 25%
0.00084
Низкий
7.3 High
CVSS3
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-74
CWE-89