Lucene search
K

4 matches found

CVE
CVE
added 2020/01/03 7:50 p.m.171 views

CVE-2014-5140

CVE-2014-5140 affects Loaded Commerce 7. The vulnerability is in the bindReplace function of the query factory (includes/classes/database.php), which does not properly handle colon characters. This enables SQL injection via the First name and Last name fields in the address book when used by remo...

8.8CVSS8.6AI score0.02682EPSS
Exploits6References5Affected Software1
seebug.org
seebug.org
added 2014/09/18 12:0 a.m.32 views

LoadedCommerce7 - Systemic Query Factory Vulnerability

No description provided by source. Title: LoadedCommerce7 Systemic Query Factory Vulnerability Advisory: http://breaking.technology/advisories/CVE-2014-5140.txt Credits: Discovered by Breaking Technology Research Labs 2014-06-30 Reference: CVE-2014-5140 - Assigned 31 June 2014 Timeline: Vendor...

7.1CVSS8.7AI score0.02682EPSS
Exploits6
0day.today
0day.today
added 2014/09/08 12:0 a.m.44 views

LoadedCommerce7 - Systemic Query Factory Vulnerability

Loaded Commerce 7 shopping cart/online store suffers from a systemic vulnerability in its query factory, allowing attackers to circumvent user input sanitizing to perform remote SQL injection. Title: LoadedCommerce7 Systemic Query Factory Vulnerability Advisory:...

7.1CVSS0.6AI score0.02682EPSS
Exploits6
Exploit DB
Exploit DB
added 2014/09/07 12:0 a.m.41 views

LoadedCommerce7 - Systemic Query Factory

Title: LoadedCommerce7 Systemic Query Factory Vulnerability Advisory: http://breaking.technology/advisories/CVE-2014-5140.txt Credits: Discovered by Breaking Technology Research Labs 2014-06-30 Reference: CVE-2014-5140 - Assigned 31 June 2014 Timeline: Vendor notified - 29 July 2014 Vendor...

8.8CVSS7AI score0.02682EPSS
Exploits6
Rows per page
Query Builder