Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple SQL injection vulnerabilities in Qualiteam X-Cart 4.0.8 allow remote attackers to execute arbitrary SQL commands via the (1) cat or (2) printable parameter to home.php, (3) productid or (4) mode parameter to product.php, (5) id parameter to error_message.php, (6) section parameter to help.php, (7) mode parameter to orders.php, (8) mode parameter to register.php, (9) mode parameter to search.php, or the (10) gcid or (11) gcindex parameter to giftcert.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Qualiteam X-Cart 多个SQL注入漏洞
Vulnerability Description
Qualiteam X-Cart 4.0.8版本中存在多个SQL注入漏洞,远程攻击者可通过:(1)提交到home.php的cat参数或(2)printable参数, (3) 到product.php的productid参数或(4)mode参数, (5)注入到error_message.php的id参数, (6)到help.php的section参数, (7)到orders.php的mode参数, (8)到register.php的mode参数, (9)到search.php的mode参数, 或(10)到g
CVSS Information
N/A
Vulnerability Type
N/A