ГлавнаяУязвимости → CVE-2024-46307
7.5высокая

CVE-2024-46307

Описание

A loop hole in the payment logic of Sparkshop v1.16 allows attackers to arbitrarily modify the number of products.

Затрагиваемое ПО
Sparkshop Sparkshop
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Источники
https://gitee.com/sparkshop/sparkshophttps://github.com/Yllxx03/CVE/tree/main/CVE-2024-46307