RSS   Vulnerabilities for 'Ectouch'   RSS

2022-02-24
 
CVE-2022-25098

NVD-CWE-noinfo
 
 
ECTouch v2 suffers from arbitrary file deletion due to insufficient filtering of the filename parameter.

 
2021-07-30
 
CVE-2020-21806

CWE-89
 
 
SQL Injection Vulnerability in ECTouch v2 via the shop page in index.php..

 
2021-07-14
 
CVE-2020-18144

CWE-89
 
 
SQL Injection Vulnerability in ECTouch v2 via the integral_min parameter in index.php.

 

Copyright 2024, cxsecurity.com

 

Back to Top