Vulnerabilities > SO Filter Shop BY Project

DATE CVE VULNERABILITY TITLE RISK
2022-07-05 CVE-2022-34972 SQL Injection vulnerability in SO Filter Shop BY Project SO Filter Shop BY 3.0
So Filter Shop v3.x was discovered to contain multiple blind SQL injection vulnerabilities via the att_value_id , manu_value_id , opt_value_id , and subcate_value_id parameters at /index.php?route=extension/module/so_filter_shop_by/filter_data.
network
low complexity
so-filter-shop-by-project CWE-89
critical
9.8