CVE-2020-37243 | Supsystic Pricing Table 1.8.6/1.8.7 GET Parameter getListForTbl sidx sql injection (Exploit 49533)

Inserito da Angelo Barbosa | Mag 16, 2026 | CVE

A vulnerability marked as critical has been reported in Supsystic Pricing Table 1.8.6/1.8.7. Affected by this vulnerability is the function getListForTbl of the component GET Parameter Handler. This manipulation of the argument sidx causes sql injection.

This vulnerability is registered as CVE-2020-37243. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

CVE-2020-37243 | Supsystic Pricing Table 1.8.6/1.8.7 GET Parameter getListForTbl sidx sql injection (Exploit 49533)

Post correlati

CVE-2024-33773 | D-Link DIR-619L up to 2.06B1 /bin/boa webpage buffer overflow

CVE-2025-27231 | Zabbix up to 6.0.40/7.0.17/7.2.11/7.4.1 LDAP Bind password insufficiently protected credentials

CVE-2024-10711 | WooCommerce Report Plugin up to 1.5.1 on WordPress Options Update cross-site request forgery

CVE-2024-12358 | WeiYe-Jing datax-web 2.1.1 /api/job/add/ glueSource os command injection