Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
PEEL Shopping version 9.4.0 allows remote SQL injection. A public user/guest (unauthenticated) can inject a malicious SQL query in order to affect the execution of predefined SQL commands. Upon a successful SQL injection attack, an attacker can read sensitive data from the database and possibly modify database data.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Advisto PEEL SHOPPING SQL注入漏洞
Vulnerability Description
Advisto PEEL SHOPPING是一套基于PHP和MySQL的开源电子商务系统。 PEEL Shopping 9.4.0.1之前版本存在SQL注入漏洞,攻击者可利用该漏洞(未经身份验证)注入恶意SQL查询,以通过achat/produit_details.php?id={SQLi] 上的id参数影响预定义SQL命令的执行。
CVSS Information
N/A
Vulnerability Type
N/A