CVE-2023-1276
The CVE-2023-1276 entry concerns SUL1SS_shop, where SQL injection is caused by manipulation of the keyword argument in the file applicationmerch/controller/Order.php. The issue is exploitable remotely, and publicly disclosed exploits exist. Multiple sources consistently describe a high-severity, ...