| |
Podatność CVE-2024-33266
Publikacja: 2024-04-29
| Opis: |
SQL Injection vulnerability in Helloshop deliveryorderautoupdate v.2.8.1 and before allows an attacker to run arbitrary SQL commands via the DeliveryorderautoupdateOrdersModuleFrontController::initContent function. |
Referencje: |
https://security.friendsofpresta.org/modules/2024/04/25/deliveryorderautoupdate.html
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
Polish
English