PT-2024-37639 · Litemall · Litemall

Name of the Vulnerable Software and Affected Versions: litemall versions up to 1.8.0 Description: A critical issue was found in the AdminGoodscontroller.java file, where the manipulation of the goodsId, goodsSn, and name arguments leads to SQL injection. This issue can be exploited remotely...

CVE-2023-5294

A vulnerability has been found in ECshop 4.1.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/order.php. The manipulation of the argument goodsid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed ...

shiziyu SQL注入漏洞

shiziyu Lionfish CMS is a community group-buying website by Lionfish CMS shiziyu. shiziyu CMS has a SQL injection vulnerability that originates from a security issue in the function goodsdetail in the file ApiController.class.php, which leads to sql injection via the parameter goodsid...

SQL Injection Vulnerability in Hanchao B2B2C Multi-User Mall System's goods_id Parameter

Hanchao B2B2C multi-user mall system is a PHP multi-user mall website system source code developed in PHP + MySQL. Hanchao B2B2C multi-user mall system v2.1.3 version goodsid parameter SQL injection vulnerability exists, because the system fails to user-supplied parameters for effective filtering...

NIUSHOP open source mall system goods_id parameter SQL injection vulnerabilities exist

NiuShop open source mall system is by Shanxi Niu Cool Information Technology Co., Ltd. completely independent design, research and development of a set of PHP open source e-commerce system . NIUSHOP open source mall system goodsid parameter exists SQL injection vulnerability . As the parameter is...