Vulnerabilities > Online PET Shop WE APP Project > Online PET Shop WE APP > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-10-12 CVE-2022-41408 SQL Injection vulnerability in Online PET Shop WE APP Project Online PET Shop WE APP 1.0
Online Pet Shop We App v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/?page=orders/view_order.
network
low complexity
online-pet-shop-we-app-project CWE-89
critical
 9.8
9.8
2021-07-30 CVE-2021-35458 SQL Injection vulnerability in Online PET Shop WE APP Project Online PET Shop WE APP 1.0
Online Pet Shop We App 1.0 is vulnerable to Union SQL Injection in products.php (aka p=products) via the c or s parameter.
network
low complexity
online-pet-shop-we-app-project CWE-89
critical
 9.8
9.8