1 results (0.003 seconds)
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2021-4328 – 狮子鱼CMS ApiController.class.php goods_detail sql injection
https://notcve.org/view.php?id=CVE-2021-4328
A vulnerability has been found in 狮子鱼CMS and classified as critical. Affected by this vulnerability is the function goods_detail of the file ApiController.class.php. The manipulation of the argument goods_id leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. • https://hammerking.top/index.php/archives/104 https://vuldb.com/?ctiid.222223 https://vuldb.com/?id.222223 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •