| |
Vulnerability CVE-2024-24323
Published: 2024-02-27
| Description: |
SQL injection vulnerability in linlinjava litemall v.1.8.0 allows a remote attacker to obtain sensitive information via the nickname, consignee, orderSN, orderStatusArray parameters of the AdminOrdercontroller.java component. |
References: |
https://github.com/lousix/exp/blob/main/CVE-2024-24323/CVE-2024-24323.md
|
|
|
closedb();
?>
Copyright 2026, cxsecurity.com
|
|
|