3 matches found
CVE-2022-30403
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggersmerch/?p=products=...
CVE-2022-30403
creationtimestamp| type| source ---|---|--- 2022-05-13 18:32:05+00:00| seen| https://t.me/cibsecurity/42669...
CVE-2022-30403
CVE-2022-30403 affects Merchandise Online Store v1.0, vulnerable to SQL injection through the URL parameter /vloggers_merch/?p=products&c=. The root cause cited across sources is inadequate input validation/escaping for the c parameter, enabling attackers to manipulate queries. Public references ...