45 matches found
CVE-2022-25098
ECTouch v2 suffers from arbitrary file deletion due to insufficient filtering of the filename parameter...
CVE-2022-25098
ECTouch v2 suffers from arbitrary file deletion due to insufficient filtering of the filename parameter...
Arbitrary file deletion
ECTouch v2 suffers from arbitrary file deletion due to insufficient filtering of the filename parameter...
ECTouch 安全漏洞
ECTouch is a software application. An open source mobile mall system to create an enterprise-specific mobile mall. ECTouch A security vulnerability exists in ECTouch v2 due to insufficient filtration of file name parameters leading to arbitrary file deletion...
CVE-2022-25098
ECTouch v2 is affected by an arbitrary file deletion vulnerability caused by insufficient filtering of the filename parameter. The root cause cited is improper validation of file names, enabling deletion of files via this parameter. The connected documents in this set confirm the issue but do not...
CVE-2022-25098
ECTouch v2 suffers from arbitrary file deletion due to insufficient filtering of the filename parameter...
CVE-2020-21806
SQL Injection Vulnerability in ECTouch v2 via the shop page in index.php...
CVE-2020-21806
SQL Injection Vulnerability in ECTouch v2 via the shop page in index.php...
Sql injection
SQL Injection Vulnerability in ECTouch v2 via the shop page in index.php...
ECTouch SQL注入漏洞
ECTouch is a software application. An open source mobile mall system to create an enterprise exclusive mobile mall. A SQL injection vulnerability exists in ECTouch, which originates from the product index.php page failing to filter the input of special characters, an attacker can execute illegal...
CVE-2020-21806
SQL Injection Vulnerability in ECTouch v2 via the shop page in index.php...
CVE-2020-21806
The collected documents confirm a concrete vulnerability: CVE-2020-21806 affects ECTouch v2, with a SQL Injection on the shop page (index.php). The root cause cited in CNNVD-202107-2173 and related entries is failure to filter special characters in input, enabling an attacker to execute arbitrary...
ECTouch SQL Injection Vulnerability
ECTouch is an application. An open source mobile mall system to create an enterprise exclusive mobile mall. ECTouch suffers from a SQL injection vulnerability, which originates from the SQL injection vulnerability in ECTouch v2 generated through the integralmin parameter in index.php. An attacker...
CVE-2020-18144
SQL Injection Vulnerability in ECTouch v2 via the integralmin parameter in index.php...
CVE-2020-18144
SQL Injection Vulnerability in ECTouch v2 via the integralmin parameter in index.php...
Sql injection
SQL Injection Vulnerability in ECTouch v2 via the integralmin parameter in index.php...
CVE-2020-18144
SQL Injection Vulnerability in ECTouch v2 via the integralmin parameter in index.php...
CVE-2020-18144
CVE-2020-18144 is a SQL injection vulnerability in ECTouch v2 exploited via the integral_min parameter in index.php. Root cause: improper input handling leads to SQL commands being executed. Affected software: ECTouch v2 (open-source mobile mall system). Impact (per sources): high severity with p...
ECTouch SQL注入漏洞
ECTouch is an application. An open source mobile mall system to create an enterprise exclusive mobile mall. ECTouch suffers from a SQL injection vulnerability, which originates from the SQL injection vulnerability in ECTouch v2 generated through the integralmin parameter in index.php. An attacker...
ECTouch ECShop 2.7.3 SQL Injection
Exploit Title : ECTouch ECShop v2.7.3 SQL Injection Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 22/01/2020 Vendor Homepage : ecshop.com - ectouch.cn Software Download Link : ecshop.com/download Software Affected Versions : 1.0 and 2.7.3 Tested On : Windows a...