Vulnerability CVE-2024-24323


Published: 2024-02-27

Description:
SQL injection vulnerability in linlinjava litemall v.1.8.0 allows a remote attacker to obtain sensitive information via the nickname, consignee, orderSN, orderStatusArray parameters of the AdminOrdercontroller.java component.

 References:
https://github.com/lousix/exp/blob/main/CVE-2024-24323/CVE-2024-24323.md

Copyright 2026, cxsecurity.com

 

Back to Top