Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SQLi in Arma Store's Armalife
Vulnerability Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'), CWE - 200 - Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Arma Store Armalife allows SQL Injection.This issue affects Armalife: through 20250916. NOTE: The vendor did not inform about the completion of the fixing process within the specified time. The CVE will be updated when new information becomes available.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
Armalife SQL注入漏洞
Vulnerability Description
Armalife是土耳其Armalife公司的一个在线时尚零售软件。 Armalife 20250916及之前版本存在SQL注入漏洞,该漏洞源于SQL命令中特殊元素中和不当,可能导致SQL注入和敏感信息泄露。
CVSS Information
N/A
Vulnerability Type
N/A