CVE-2024-46382 | linlinjava litemall 1.8.0 AdminGoodscontroller.java goodsId/goodsSn/name parameters sql injection (Issue 552)

Inserito da Angelo Barbosa | Set 19, 2024 | CVE

A vulnerability has been found in linlinjava litemall 1.8.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file AdminGoodscontroller.java. The manipulation of the argument goodsId/goodsSn/name parameters leads to sql injection.

This vulnerability is known as CVE-2024-46382. The attack can be launched remotely. There is no exploit available.

CVE-2024-46382 | linlinjava litemall 1.8.0 AdminGoodscontroller.java goodsId/goodsSn/name parameters sql injection (Issue 552)

Post correlati

CVE-2023-38291 | TCL/Motorola Device ro.boot.wifimacaddr information disclosure

CVE-2023-46950 | Contribsys Sidekiq 6.5.8 URL filter cross site scripting

CVE-2023-5081 | Lenovo Tab M8 HD Device Identifier information disclosure

CVE-2024-5156 | Flatsome Plugin up to 3.18.7 on WordPress Shortcode cross site scripting