2 matches found
CVE-2023-5293 ECshop leancloud.php sql injection
A vulnerability, which was classified as critical, was found in ECshop 4.1.5. Affected is an unknown function of the file /admin/leancloud.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public an...
CVE-2023-5293
ECshop 4.1.5 is affected by a SQL injection in /admin/leancloud.php triggered by manipulating the id parameter. The vulnerability enables remote exploitation and has been publicly disclosed (CVE-2023-5293). Exploitation details across sources consistently point to an injection in an unknown funct...