oretnom23 Online Pet Shop We App 1.0 Master.php id sql injection

A vulnerability, which was classified as critical, was found in oretnom23 Online Pet Shop We App 1.0. Affected is some unknown functionality of the file /pet_shop/classes/Master.php?f=delete_order. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Field09/22/2022 11:34 PM09/22/2022 11:37 PM
vendororetnom23oretnom23
nameOnline Pet Shop We AppOnline Pet Shop We App
version1.01.0
file/pet_shop/classes/Master.php?f=delete_order/pet_shop/classes/Master.php?f=delete_order
argumentidid
cwe89 (sql injection)89 (sql injection)
risk22
cvss3_vuldb_avNN
cvss3_vuldb_acLL
cvss3_vuldb_prHH
cvss3_vuldb_uiNN
cvss3_vuldb_sUU
cvss3_vuldb_cLL
cvss3_vuldb_iLL
cvss3_vuldb_aLL
cvss3_vuldb_rcRR
cvss3_nvd_avNN
cvss3_nvd_acLL
cvss3_nvd_prHH
cvss3_nvd_uiNN
cvss3_nvd_sUU
cvss3_nvd_cHH
cvss3_nvd_iHH
cvss3_nvd_aHH
urlhttps://github.com/lime-10010/Bug_report/blob/main/vendors/oretnom23/online-pet-shop-we-app/SQLi-1.mdhttps://github.com/lime-10010/Bug_report/blob/main/vendors/oretnom23/online-pet-shop-we-app/SQLi-1.md
cveCVE-2022-40933CVE-2022-40933
cve_assigned1663538400 (09/19/2022)1663538400 (09/19/2022)
cve_nvd_summaryOnline Pet Shop We App v1.0 by oretnom23 is vulnerable to SQL injection via /pet_shop/classes/Master.php?f=delete_order,id.Online Pet Shop We App v1.0 by oretnom23 is vulnerable to SQL injection via /pet_shop/classes/Master.php?f=delete_order,id.
date1663797600 (09/22/2022)1663797600 (09/22/2022)
cvss2_vuldb_avNN
cvss2_vuldb_acLL
cvss2_vuldb_auMM
cvss2_vuldb_ciPP
cvss2_vuldb_iiPP
cvss2_vuldb_aiPP
cvss2_vuldb_rcURUR
cvss2_vuldb_rlNDND
cvss3_vuldb_rlXX
cvss3_nvd_basescore7.27.2
cvss2_vuldb_basescore5.85.8
cvss3_vuldb_basescore4.74.7
cvss3_meta_basescore5.95.9
price_0day$0-$5k$0-$5k
cvss2_vuldb_ePOC
cvss3_vuldb_eP
cvss2_vuldb_tempscore5.0
cvss3_vuldb_tempscore4.3
cvss3_meta_tempscore5.7
availability1
publicity1
urlhttps://github.com/lime-10010/Bug_report/blob/main/vendors/oretnom23/online-pet-shop-we-app/SQLi-1.md

Want to stay up to date on a daily basis?

Enable the mail alert feature now!