Enviar #780789: Shopsuite modulithshop 829bac71f507e84684c782b9b062b8bf3b5585d6 SQL Injectioninformación

TítuloShopsuite modulithshop 829bac71f507e84684c782b9b062b8bf3b5585d6 SQL Injection
DescripciónThe ShopSuite system contains a SQL injection vulnerability in the listItemKey method of the ProductItemDao interface. Attackers can inject malicious SQL code through the sidx and sort parameters in ORDER BY clauses, allowing extraction of sensitive information from the database including product data, user information, system configuration, and potentially administrative credentials.
Fuente⚠️ https://github.com/shsuishang/modulithshop/issues/3
Usuario
 Anonymous User
Sumisión2026-03-16 12:51 (hace 4 meses)
Moderación2026-04-01 15:29 (16 days later)
EstadoAceptado
Entrada de VulDB354659 [shsuishang modulithshop hasta 829bac71f507e84684c782b9b062b8bf3b5585d6 ProductItemDao Interface ProductIndexServiceImpl.java listItem sidx/sort inyección SQL]
Puntos19

Want to stay up to date on a daily basis?

Enable the mail alert feature now!