CVE-2022-40834 B.C
An attacker can inject arbitrary SQL code into the database by setting the value of the parameter to ' or_not_like() function in system\
CVE-2022-40835 B.C
A user with minimum privileges can inject arbitrary SQL queries and execute them with the privileges of the application user. A user with minimum privileges
CVE-2022-40833 B.C
An attacker can inject malicious SQL code into system\database\DB_query_builder.php to cause denial of service.
CVE-2018-6109: SQL injection in system\database\
CVE-2022-40830 B.C
If a user is able to inject malicious SQL code into this function through an insecurely formed URL then it might result in remote code
CVE-2022-40826 B.C
Attackers can inject malicious SQL statements in order to access or modify data, or as a pivot to access a different system via SQL injection.
Episode
00:00:00
00:00:00