Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2024-25248

Disclosure Date: February 26, 2024 (last updated February 26, 2025)
SQL Injection vulnerability in the orderGoodsDelivery() function in Niushop B2B2C V5 allows attackers to run arbitrary SQL commands via the order_id parameter.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0