CVE-2024-0481
Taokeyun up to version 1.0.5 contains a SQL injection in the shopGoods function (application/index/controller/app/store/Goods.php) triggered via the keyword parameter in HTTP POST requests. The vulnerability is exploitable remotely, and public exploit details have been disclosed. The CVE entry no...