Lucene search
China National Vulnerability DatabaseCNVD-2023-29383HistoryApr 11, 2023 - 12:00 a.m.
Online Computer and Laptop Store SQL Injection Vulnerability (CNVD-2023-29383)
2023-04-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
online computer and laptop store
sql injection
vulnerability
carlo montero
sql commands
database
data
attackers
EPSS
0.001
Percentile
51.2%
Online Computer and Laptop Store is an online computer and laptop store from Carlo Monteroβs personal developer. Online Computer and Laptop Store v1.0 is vulnerable to SQL injection. The vulnerability stems from the lack of validation of external input SQL statements in the parameter id of the file /admin/maintenance/brand.php, which can be exploited by attackers to execute illegal SQL commands to steal sensitive database data.
Related
cvelist
cvelist
cve
cve
CVE-2023-1951
2023-04-08 08:15:07
prion
prion
Sql injection
2023-04-08 08:15:00
nvd
nvd
CVE-2023-1951
2023-04-08 08:15:07