How severe is CVE-2024-4826?

CVE-2024-4826 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2024-4826

9.8CRITICAL

SQL injection vulnerability in Simple PHP Shopping Cart affecting version 0.9. This vulnerability could allow an attacker to retrieve all the information stored in the database by sending a specially

Veröffentlicht: 5/16/2024Aktualisiert: 11/21/2024

Beschreibung

SQL injection vulnerability in Simple PHP Shopping Cart affecting version 0.9. This vulnerability could allow an attacker to retrieve all the information stored in the database by sending a specially crafted SQL query, due to the lack of proper sanitisation of the category_id parameter in the category.php file.

KI-AnalyseKI-gestützt

Referenzen

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-simple-php-shopping-cart
https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-simple-php-shopping-cart