제출 #780789: Shopsuite modulithshop 829bac71f507e84684c782b9b062b8bf3b5585d6 SQL Injection정보

제목Shopsuite modulithshop 829bac71f507e84684c782b9b062b8bf3b5585d6 SQL Injection
설명The ShopSuite system contains a SQL injection vulnerability in the listItemKey method of the ProductItemDao interface. Attackers can inject malicious SQL code through the sidx and sort parameters in ORDER BY clauses, allowing extraction of sensitive information from the database including product data, user information, system configuration, and potentially administrative credentials.
원천⚠️ https://github.com/shsuishang/modulithshop/issues/3
사용자
 Anonymous User
제출2026. 03. 16. PM 12:51 (4 개월 ago)
모더레이션2026. 04. 01. PM 03:29 (16 days later)
상태수락
VulDB 항목354659 [shsuishang modulithshop 까지 829bac71f507e84684c782b9b062b8bf3b5585d6 ProductItemDao Interface ProductIndexServiceImpl.java listItem sidx/sort SQL 주입]
포인트들19

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!