2 matches found
CVE-2024-8407
The CVE-2024-8407 vulnerability affects the alwindoss akademy project, specifically the file cmd/akademy/handler/handlers.go. Affected functionality is unknown, but the issue arises from improper handling of the emailAddress parameter, enabling cross-site scripting (XSS). The attack is described ...
CVE-2021-4328 狮子鱼CMS ApiController.class.php goods_detail sql injection
A vulnerability has been found in 狮子鱼CMS and classified as critical. Affected by this vulnerability is the function goodsdetail of the file ApiController.class.php. The manipulation of the argument goodsid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed...