CVE-2018-25206
EUVD-2018-2167126.03.2026, 12:16
KomSeo Cart 1.3 contains an SQL injection vulnerability that allows attackers to inject SQL commands through the 'my_item_search' parameter in edit.php. Attackers can submit POST requests with malicious SQL payloads to extract sensitive database information using boolean-based blind or error-based injection techniques.
Awaiting analysis
This vulnerability is currently awaiting analysis.