SQL injection vulnerability found in Tailor Mangement System v.1 allows a remote attacker to execute arbitrary code via the customer parameter of the orderadd.php file
References
Link | Resource |
---|---|
https://github.com/Abdallah-Fouad-X/CVE-s/blob/main/README.md | Third Party Advisory |
https://www.linkedin.com/in/abdallah-fouad/ | Issue Tracking |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2023-04-10 13:15
Updated : 2024-02-28 20:13
NVD link : CVE-2020-36077
Mitre link : CVE-2020-36077
CVE.ORG link : CVE-2020-36077
JSON object : View
Products Affected
tailor_mangement_system_project
- tailor_mangement_system
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')