2 matches found
CVE-2022-30396
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggersmerch/admin/?page=inventory/manageinventory=...
CVE-2022-30396
CVE-2022-30396 affects Merchandise Online Store v1.0, with a SQL Injection in the admin inventory page (/vloggers_merch/admin/?page=inventory/manage_inventory&id=). The connected sources corroborate an injectable parameter, enabling potential unauthorized data access or modification via the inven...