3 matches found
CVE-2022-42237
creationtimestamp| type| source ---|---|--- 2022-10-17 18:13:18+00:00| seen| https://t.me/cibsecurity/51591 2025-05-10 03:25:49+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/15863...
CVE-2022-42237
A SQL Injection issue in Merchandise Online Store v.1.0 allows an attacker to log in to the admin account...
CVE-2022-42237
CVE-2022-42237 affects Merchandise Online Store v1.0, exposing an SQL Injection in the login/auth workflow that can allow an attacker to log in to an admin account. The vulnerability is classified as CRITICAL (CVSS 3.1: 9.8) with network attack vector, no privileges, and no user interaction requi...