Vulnerabilities > CVE-2024-4071 - Unspecified vulnerability in Aditya88 Online Furniture Shopping Ecommerce Website 1.0

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

aditya88

NVD

Published: 2024-04-23

Updated: 2024-11-21

Summary

A vulnerability was found in Kashipara Online Furniture Shopping Ecommerce Website 1.0 and classified as critical. This issue affects some unknown processing of the file prodInfo.php. The manipulation of the argument prodId leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-261797 was assigned to this vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Aditya88 Aditya88 Online Furniture Shopping Ecommerce Website 1.0	1

References

https://github.com/E1CHO/cve_hub/blob/main/Online%20Furniture%20Shopping%20Ecommerce%20Website/Online%20Furniture%20Shopping%20Ecommerce%20Website%20Project%20-%20vuln%203.pdf
https://github.com/E1CHO/cve_hub/blob/main/Online%20Furniture%20Shopping%20Ecommerce%20Website/Online%20Furniture%20Shopping%20Ecommerce%20Website%20Project%20-%20vuln%203.pdf
https://vuldb.com/?ctiid.261797
https://vuldb.com/?ctiid.261797
https://vuldb.com/?id.261797
https://vuldb.com/?id.261797
https://vuldb.com/?submit.321445
https://vuldb.com/?submit.321445