3 matches found
CVE-2022-30452
ShopWind = v3.4.2 has a Sql injection vulnerability in Database.php...
Arbitrary file deletion
Shopwind =v3.4.2 was discovered to contain a Arbitrary File Delete vulnerability via the neirong parameter at \backend\controllers\DbController.php...
Sql injection
ShopWind = v3.4.2 has a Sql injection vulnerability in Database.php...