ГлавнаяУязвимости → CVE-2024-24027
7.2высокая

CVE-2024-24027

Описание

SQL Injection vulnerability in Likeshop before 2.5.7 allows attackers to run abitrary SQL commands via the function DistributionMemberLogic::getFansLists.

Затрагиваемое ПО
Likeshop Likeshop
CVSS
Балл7.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Источники
https://samyueru.substack.com/p/cve-2024-24027-sql-injection-trong-likeshophttps://samyueru.substack.com/p/cve-2024-24027-sql-injection-trong-likeshop