2 matches found
CVE-2020-29285
CVE-2020-29285 describes a SQL injection in a Point of Sales application (PHP/PDO 1.0) exploitable through the id parameter of edit_category.php. The vulnerability is exposed over the network, requires no authentication, and can impact confidentiality, integrity, and availability (per NVD CVSS 3....
CVE-2020-29285
SQL injection vulnerability was discovered in Point of Sales in PHP/PDO 1.0, which can be exploited via the id parameter to editcategory.php...