CVE-2023-4445
CVE-2023-4445 impacts Mini-Tmall up to 20230811. A vulnerability in the function/file path product/1/1?test=1&test2=2& allows SQL injection via manipulation of the orderBy argument. The issue can be exploited remotely; exploitation details are disclosed publicly. A patch/version that fixes this i...