CVE-2022-4961 | Weitong Mall 1.0.0 OrderDao.xml sidx/order sql injection (I5XC79)

Inserito da Angelo Barbosa | Gen 10, 2024 | CVE

A vulnerability was found in Weitong Mall 1.0.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file platform-shopsrcmainresourcescomplatformdaoOrderDao.xml. The manipulation of the argument sidx/order leads to sql injection.

This vulnerability is known as CVE-2022-4961. The attack needs to be approached within the local network. There is no exploit available.

CVE-2022-4961 | Weitong Mall 1.0.0 OrderDao.xml sidx/order sql injection (I5XC79)

Post correlati

CVE-2024-21983 | NetApp StorageGRID up to 11.7 uncaught exception (ntap-20240216-0012)

CVE-2024-4081 | NI LabVIEW up to 24.1 VI memory corruption

CVE-2023-4467 | Poly Trio 8800 7.2.6.0019 Test Automation Mode backdoor (MZ-23-01)

CVE-2024-22105 | Mitsubishi Electric CPU Module Logging Configuration Tool resource consumption (icsa-24-135-04)