MidnightBSD

Advisories for nikoarroyocuraza

CVE-2024-50970

A SQL injection vulnerability in orderview1.php of Itsourcecode Online Furniture Shopping Project 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Products Affected

Vendor Product Version
nikoarroyocuraza online_furniture_shopping_project 1.0