CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-30391
https://notcve.org/view.php?id=CVE-2022-30391
13 May 2022 — Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master.php?f=delete_category. Merchandise Online Store versión v1.0, es vulnerable a una inyección SQL por medio de /vloggers_merch/classes/Master.php?f=delete_category • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/merchandise-online-store/SQLi-5.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-30392
https://notcve.org/view.php?id=CVE-2022-30392
13 May 2022 — Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master.php?f=delete_sub_category. Merchandise Online Store versión v1.0, es vulnerable a una inyección SQL por medio de /vloggers_merch/classes/Master.php?f=delete_sub_category • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/merchandise-online-store/SQLi-6.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2022-30393
https://notcve.org/view.php?id=CVE-2022-30393
13 May 2022 — Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/?page=product/manage_product&id=. Merchandise Online Store versión v1.0, es vulnerable a una inyección SQL por medio de /vloggers_merch/admin/?page=product/manage_product&id= • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/merchandise-online-store/SQLi-8.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-30395
https://notcve.org/view.php?id=CVE-2022-30395
13 May 2022 — Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master.php?f=delete_cart. Merchandise Online Store versión v1.0, es vulnerable a una inyección SQL por medio de /vloggers_merch/classes/Master.php?f=delete_cart • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/merchandise-online-store/SQLi-7.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2022-30396
https://notcve.org/view.php?id=CVE-2022-30396
13 May 2022 — Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/?page=inventory/manage_inventory&id=. Merchandise Online Store versión v1.0, es vulnerable a una inyección SQL por medio de /vloggers_merch/admin/?page=inventory/manage_inventory&id= • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/merchandise-online-store/SQLi-9.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2022-30398
https://notcve.org/view.php?id=CVE-2022-30398
13 May 2022 — Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/?page=orders/view_order&id=. Merchandise Online Store versión v1.0, es vulnerable a una inyección SQL por medio de /vloggers_merch/admin/?page=orders/view_order&id= • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/merchandise-online-store/SQLi-10.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2022-30399
https://notcve.org/view.php?id=CVE-2022-30399
13 May 2022 — Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/?page=maintenance/manage_category&id=. Merchandise Online Store versión v1.0, es vulnerable a una inyección SQL por medio de /vloggers_merch/admin/?page=maintenance/manage_category&id= • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/merchandise-online-store/SQLi-11.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2022-30400
https://notcve.org/view.php?id=CVE-2022-30400
13 May 2022 — Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/orders/view_order.php?view=user&id=. Merchandise Online Store versión v1.0, es vulnerable a una inyección SQL por medio de /vloggers_merch/admin/orders/view_order.php?view=user&id= • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/merchandise-online-store/SQLi-13.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2022-30401
https://notcve.org/view.php?id=CVE-2022-30401
13 May 2022 — Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/?p=view_product&id=. Merchandise Online Store versión v1.0, es vulnerable a una inyección SQL por medio de /vloggers_merch/?p=view_product&id= • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/merchandise-online-store/SQLi-14.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2022-30402
https://notcve.org/view.php?id=CVE-2022-30402
13 May 2022 — Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/?page=maintenance/manage_sub_category&id=. Merchandise Online Store versión v1.0, es vulnerable a una inyección SQL por medio de /vloggers_merch/admin/?page=maintenance/manage_sub_category&id= • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/merchandise-online-store/SQLi-12.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •