CVE-2024-24027 Information

Description

SQL Injection vulnerability in Likeshop before 2.5.7 allows attackers to run abitrary SQL commands via the function DistributionMemberLogic::getFansLists.

Reference

https://samyueru.substack.com/p/cve-2024-24027-sql-injection-trong-likeshop