Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown

CVE-2024-24112

Disclosure Date: February 06, 2024 (last updated February 13, 2024)
xmall v1.1 was discovered to contain a SQL injection vulnerability via the orderDir parameter.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2021-43432

Disclosure Date: April 07, 2022 (last updated February 23, 2025)
A Cross Site Scripting (XSS) vulnerability exists in Exrick XMall Admin Panel as of 11/7/2021 via the GET parameter in product-add.jsp.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0