CNNVD-202511-1861 Information

CNNVD ID

CNNVD-202511-1861

Related CVE

CVE-2024-44664

• CNNVD Published: 2025-11-17

Description (Chinese)

PHPGurukul Online Shopping Portal是PHPGurukul公司的一个在线商店。 PHPGurukul Online Shopping Portal 2.0版本存在安全漏洞，该漏洞源于product-details.php中name、summary、review、quality、price和value参数未经验证，可能导致SQL注入攻击。

Description (English)

PHPGurukul Online Shoping Portal is an online shop of PHPGurukul. PHPGurukul Online Shoping Portal 2.0 has a security loophole that originates from unverified parameters in the name of the protocol-details.php, summy, review, quality, price and value that could lead to SQL injection attacks.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

PHPGurukul

Published

2025-11-17

Last Modified

2026-02-24

References

https://github.com/leexsoyoung/CVEs/blob/main/CVE-2024-44664.md https://phpgurukul.com/shopping-portal-free-download/ https://access.redhat.com/security/cve/cve-2024-44664