Online Computer and Laptop Store is an online computer and laptop store by Carlo Monteroβs personal developer. Online Computer and Laptop Store v1.0 is vulnerable to a SQL injection vulnerability in the file /classes/Master.php?f=update_order_status, where the parameter id of the function update_order_status lacks validation for external input SQL statement, an attacker can use this vulnerability to execute illegal SQL commands to steal sensitive database data.
CPE | Name | Operator | Version |
---|---|---|---|
carlo montero online computer and laptop store v | eq | 1.0 |