ГлавнаяУязвимости → CVE-2024-42404
8.8высокая

CVE-2024-42404

Описание

SQL injection vulnerability in Welcart e-Commerce prior to 2.11.2 allows an attacker who can login to the product to obtain or alter the information stored in the database.

Затрагиваемое ПО
Welcart Welcart e-commerce
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://jvn.jp/en/jp/JVN19766555/https://www.welcart.com/archives/22581.html