CVE-2006-6109 in CandyPress Store信息

摘要

由 VulDB • 2026-06-29

CandyPress Store 3.5.2.14 中存在多个 SQL injection(SQL注入)漏洞,远程攻击者可通过在 openPolicy.asp 中的策略参数或 prodList.asp 中的品牌参数执行任意 SQL 命令。

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

来源

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!