mirror of
https://github.com/0xMarcio/cve.git
synced 2025-06-19 17:30:12 +00:00
806 B
806 B
CVE-2024-28714
Description
SQL Injection vulnerability in CRMEB_Java e-commerce system v.1.3.4 allows an attacker to execute arbitrary code via the groupid parameter.
POC
Reference
- https://github.com/JiangXiaoBaiJia/cve2/blob/main/1.md
- https://github.com/JiangXiaoBaiJia/cve2/blob/main/1.md
- https://github.com/JiangXiaoBaiJia/cve2/blob/main/a.png
- https://github.com/JiangXiaoBaiJia/cve2/blob/main/a.png
