CVE-2026-5328
CVE-2026-5328 affects shsuishang modulithshop, specifically the ProductItemDao/ProductIndexServiceImpl.java listItem function. The vulnerability arises from manipulating the sidx/sort parameter, enabling SQL injection via remote input. A patch identified as 42bcb9463425d1be906c3b290cf29885eb5a232...