5 matches found
EUVD-2023-57617
Malicious code in bioql PyPI...
CVE-2023-5294 ECshop order.php sql injection
A vulnerability has been found in ECshop 4.1.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/order.php. The manipulation of the argument goodsid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed ...
CVE-2021-43679
ecshop v2.7.3 is affected by a SQL injection vulnerability in shopex\ecshop\upload\api\client\api.php...
ECShop SQL Injection Vulnerability (CNVD-2021-44949)
ECShop is a professional e-commerce mall system. A SQL injection vulnerability exists in ECShop version 3.0. An attacker can exploit this vulnerability by using the aid parameter of admin/affiliateck.php to conduct SQL injection attacks...
ECSHOP suffers from SQL injection vulnerability (CNVD-2021-26064)
ECShop is a B2C independent online store system, suitable for businesses and individuals to quickly build a personalized online store. ECSHOP is vulnerable to SQL injection. An attacker can exploit this vulnerability to obtain sensitive information from the database...