CVE-2014-2008 in mPAY24informazioni

Riassunto

di MITRE

SQL injection vulnerability in confirm.php in the mPAY24 payment module before 1.6 for PrestaShop allows remote attackers to execute arbitrary SQL commands via the TID parameter.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

17/02/2014

Divulgazione

12/09/2014

Moderazione

accettato

Voce

VDB-71228

CPE

pronto

CWE

CWE-89 (confermato)

Sfruttamento

Scaricare

CVSS

7.5 (NVD)

EPSS

0.03923

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2014-2008
NVD	https://nvd.nist.gov/vuln/detail/CVE-2014-2008
CVE Details	https://www.cvedetails.com/cve/CVE-2014-2008/

◂ Precedente Visione D'ensemble Il prossimo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!