2 matches found
CVE-2023-1502
A vulnerability was found in SourceCodester Alphaware Simple E-Commerce System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file function/editcustomer.php. The manipulation of the argument firstname/mi/lastname with the input a' RLIKE SLEEP5 AND...
CVE-2023-1502
CVE-2023-1502 affects SourceCodester Alphaware Simple E-Commerce System 1.0. The vulnerability is an SQL injection in the file function/edit_customer.php, triggered by manipulating the firstname/mi/lastname inputs (example payload: a' RLIKE SLEEP(5) AND 'dAbu'='dAbu). It can be exploited remotely...