CVE-2024-25469

SQL Injection vulnerability in CRMEB crmebjava v.1.3.4 and before allows a remote attacker to obtain sensitive information via the latitude and longitude parameters in the api/front/store/list component...

CRMEB Security Vulnerabilities

Zhongbang CRMEB is an open source e-commerce management system from Zhongbang Networks Zhongbang in Xi'an, China. A security vulnerability exists in CRMEB crmebjava v.1.3.4 and earlier versions. A remote attacker can exploit this vulnerability to obtain sensitive information via the latitude and...

PT-2024-20962 · Crmeb · Crmeb

Name of the Vulnerable Software and Affected Versions: CRMEB crmeb java versions 1.3.4 and earlier Description: The issue allows a remote attacker to obtain sensitive information via the latitude and longitude parameters in the "api/front/store/list" component. This enables the attacker to exploi...

CVE-2024-25469

SQL Injection vulnerability in CRMEB crmebjava v.1.3.4 and before allows a remote attacker to obtain sensitive information via the latitude and longitude parameters in the api/front/store/list component...