Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SQLi in Yazteks E-Commerce Software
Vulnerability Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Yaztek Software Technologies and Computer Systems E-Commerce Software allows SQL Injection.This issue affects E-Commerce Software: through 20231229. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
Yaztek Software Technologies and Computer Systems E-Commerce Software 安全漏洞
Vulnerability Description
Yaztek Software Technologies and Computer Systems E-Commerce Software是Yaztek Software Technologies and Computer Systems公司的一个电子商务系统。 Yaztek Software Technologies and Computer Systems E-Commerce Software 20231229及之前版本存在安全漏洞,该漏洞源于存在SQL注入漏洞。
CVSS Information
N/A
Vulnerability Type
N/A