3 matches found
CVE-2022-30400
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggersmerch/admin/orders/vieworder.php?view=user=...
CVE-2022-30400
creationtimestamp| type| source ---|---|--- 2022-05-13 18:28:07+00:00| seen| https://t.me/cibsecurity/42661...
CVE-2022-30400
CVE-2022-30400 concerns Merchandise Online Store v1.0, vulnerable to SQL Injection in the admin orders view. The flaw is triggered via the URL parameter id on /vloggers_merch/admin/orders/view_order.php?view=user&id=, allowing an attacker to manipulate queries and potentially access or modify dat...