CVE-2026-38808 | uzy-ssm-mall 1.1.0 /OrderUtil.java sql injection

Inserito da Angelo Barbosa | Mag 27, 2026 | CVE

A vulnerability, which was classified as critical, has been found in uzy-ssm-mall 1.1.0. The affected element is an unknown function of the file /OrderUtil.java. This manipulation causes sql injection.

This vulnerability appears as CVE-2026-38808. The attack may be initiated remotely. There is no available exploit.

CVE-2026-38808 | uzy-ssm-mall 1.1.0 /OrderUtil.java sql injection

Post correlati

CVE-2023-49765 | Blaz K. Rate my Post Plugin up to 3.4.1 on WordPress authorization

CVE-2025-26530 | Moodle up to 4.3.9/4.4.5/4.5.1 Question Bank Filter cross site scripting

CVE-2025-58445 | runatlantis up to 0.35.1 API /status information disclosure

CVE-2024-2957 | Simple Ajax Chat Plugin up to 20240216 on WordPress cross site scripting