25 matches found
Sql injection
A vulnerability has been found in Surya2Developer Online Shopping System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file login.php of the component POST Parameter Handler. The manipulation of the argument password with the input...
CVE-2024-1971 Surya2Developer Online Shopping System POST Parameter login.php sql injection
A vulnerability has been found in Surya2Developer Online Shopping System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file login.php of the component POST Parameter Handler. The manipulation of the argument password with the input...
CVE-2024-1971 Surya2Developer Online Shopping System POST Parameter login.php sql injection
A vulnerability has been found in Surya2Developer Online Shopping System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file login.php of the component POST Parameter Handler. The manipulation of the argument password with the input...
CVE-2024-1971
CVE-2024-1971 affects Surya2Developer Online Shopping System 1.0. The vulnerability is a SQL injection in the POST Parameter Handler’s file login.php, triggered by manipulating the password parameter (example payload: nochizplz'+or+1%3d1+limit+1%23). The attack can be launched remotely, and publi...
PT-2024-18461 · Unknown · Surya2Developer Online Shopping System
Name of the Vulnerable Software and Affected Versions: Surya2Developer Online Shopping System version 1.0 Description: A critical issue has been found in the file login.php of the component POST Parameter Handler. The manipulation of the password argument with the input...