SQL injection vulnerability in E-Negosyo System affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in 'id' in '/admin/orders/controller.php' parameter
Metrics
Affected Vendors & Products
References
History
Thu, 15 Aug 2024 17:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Janobe young Entrepreneur E-negosyo System
|
|
CPEs | cpe:2.3:a:janobe:young_entrepreneur_e-negosyo_system:1.0:*:*:*:*:*:*:* | |
Vendors & Products |
Janobe young Entrepreneur E-negosyo System
|
MITRE
Status: PUBLISHED
Assigner: INCIBE
Published: 2024-08-06T11:03:09.911Z
Updated: 2024-08-06T15:51:35.882Z
Reserved: 2024-04-29T12:38:37.771Z
Link: CVE-2024-33957
Vulnrichment
Updated: 2024-08-06T15:50:39.900Z
NVD
Status : Analyzed
Published: 2024-08-06T11:16:04.443
Modified: 2024-08-15T16:47:12.787
Link: CVE-2024-33957
Redhat
No data.