3 matches found
CVE-2022-30391
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggersmerch/classes/Master.php?f=deletecategory...
CVE-2022-30391
creationtimestamp| type| source ---|---|--- 2022-05-13 18:32:15+00:00| seen| https://t.me/cibsecurity/42677...
CVE-2022-30391
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master.php?f=delete_category. Root cause is unsafe SQL construction in that endpoint, enabling attackers to manipulate queries. Documented impact aligns with high severity (CVE-2022-30391) impacting confident...