CVE-2019-25541
EUVD-2019-1983112.03.2026, 16:16
Netartmedia PHP Mall 4.1 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to manipulate database queries through unvalidated parameters. Attackers can inject time-based blind SQL payloads via the 'id' parameter in index.php or the 'Email' parameter in loginaction.php to extract sensitive database information.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| netartmedia | php_mall | 4.1 |
𝑥
= Vulnerable software versions