RSS   Vulnerabilities for 'Online shopping alphaware'   RSS

2021-06-02
 
CVE-2020-25362

CWE-89
 

 
The id paramater in Online Shopping Alphaware 1.0 has been discovered to be vulnerable to an Error-Based blind SQL injection in the /alphaware/details.php path. This allows an attacker to retrieve all databases.

 
2020-08-17
 
CVE-2020-24208

CWE-89
 

 
A SQL injection vulnerability in SourceCodester Online Shopping Alphaware 1.0 allows remote unauthenticated attackers to bypass the authentication process via email and password parameters.

 


Copyright 2024, cxsecurity.com

 

Back to Top