5 matches found
EUVD-2024-44416
Malicious code in bioql PyPI...
CVE-2024-4826
SQL injection vulnerability in Simple PHP Shopping Cart affecting version 0.9. This vulnerability could allow an attacker to retrieve all the information stored in the database by sending a specially crafted SQL query, due to the lack of proper sanitisation of the categoryid parameter in the...
CVE-2024-4826 SQL injection vulnerability in Simple PHP Shopping Cart
SQL injection vulnerability in Simple PHP Shopping Cart affecting version 0.9. This vulnerability could allow an attacker to retrieve all the information stored in the database by sending a specially crafted SQL query, due to the lack of proper sanitisation of the categoryid parameter in the...
CVE-2024-4826 SQL injection vulnerability in Simple PHP Shopping Cart
SQL injection vulnerability in Simple PHP Shopping Cart affecting version 0.9. This vulnerability could allow an attacker to retrieve all the information stored in the database by sending a specially crafted SQL query, due to the lack of proper sanitisation of the categoryid parameter in the...
CVE-2024-4826
CVE-2024-4826 : SQL injection in the open-source PHP Shopping Cart (version 0.9) due to improper sanitisation of the category_id parameter in category.php. The issue enables an attacker to exfiltrate data from the database. CVSS metrics in the sources show a CRITICAL impact (CVSS v3.1/AV:N/AC:L/P...