RSS   Vulnerabilities for 'Merchandise online store'   RSS

2022-06-02
 
CVE-2022-30423

CWE-434
 

 
Merchandise Online Store v1.0 by oretnom23 has an arbitrary code execution (RCE) vulnerability in the user profile upload point in the system information.

 
2022-05-24
 
CVE-2022-30454

CWE-89
 

 
Merchandise Online Store 1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master.php?f=delete_product.

 


Copyright 2024, cxsecurity.com

 

Back to Top