CVE-2024-11663 | Codezips E-Commerce Site 1.0 search.php keywords sql injection

Posted by Angelo Barbosa | Nov 24, 2024 | CVE

A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument keywords leads to sql injection.

This vulnerability is known as CVE-2024-11663. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-11663 | Codezips E-Commerce Site 1.0 search.php keywords sql injection

Related Posts

CVE-2024-28042 | Subnet Solutions PowerSYSTEM Center reliance on uncontrolled component (icsa-24-135-02)

CVE-2024-41460 | Tenda FH1201 1.2.0.14 ip/goform/RouteStatic entrys stack-based overflow

CVE-2024-6244 | PZ Frontend Manager Plugin up to 1.0.5 on WordPress cross-site request forgery

CVE-2023-5226 | GitLab prior 16.4.3/16.5.3/16.6.1 Branch Check code injection