Product
high
advisory
Smartshop 1 Time-Based Blind SQL Injection Vulnerability (CVE-2018-25342)
2 rules 1 TTP 1 CVESmartshop 1 is vulnerable to time-based blind SQL injection via the 'searched' parameter in search.php, allowing unauthenticated attackers to inject SQL code to extract sensitive information.
Smartshop 1
sql-injection
web-application
cve-2018-25342
2r
1t
1c
high
advisory
CVE-2018-25340 Smartshop 1 SQL Injection Vulnerability
2 rules 1 TTP 1 CVESmartshop version 1 is vulnerable to SQL injection, allowing unauthenticated attackers to execute arbitrary SQL queries via the id parameter in category.php GET requests, potentially leading to sensitive data extraction.
Smartshop 1
cve-2018-25340
sql-injection
web-application
2r
1t
1c