2 matches found
PT-2026-26605
WeGIA is a web manager for charitable institutions. Versions 3.6.5 and below contain an authenticated SQL Injection vulnerability in the html/matPat/restaurar produto.php endpoint. The vulnerability allows an authenticated attacker to inject arbitrary SQL commands via the id produto GET parameter...
PT-2005-2177 · Oneworld · Oneworldstore
Name of the Vulnerable Software and Affected Versions: OneWorldStore affected versions not specified Description: The issue concerns SQL injection vulnerabilities that allow remote attackers to execute arbitrary SQL commands. This can be achieved through various parameters in different API...