CVE-2014-2008 in mPAY24info

Zusammenfassung

von MITRE

SQL injection vulnerability in confirm.php in the mPAY24 payment module before 1.6 for PrestaShop allows remote attackers to execute arbitrary SQL commands via the TID parameter.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

17.02.2014

Veröffentlichung

12.09.2014

Moderieren

akzeptiert

Eintrag

VDB-71228

CPE

bereit

CWE

CWE-89 (bestätigt)

Exploit

Download

CVSS

7.5 (NVD)

EPSS

0.02638

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2014-2008
NVD	https://nvd.nist.gov/vuln/detail/CVE-2014-2008
CVE Details	https://www.cvedetails.com/cve/CVE-2014-2008/

◂ Zurück Übersicht Weiter ▸

Do you know our Splunk app?

Download it now for free!