CVE-2022-38947
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Dec 9, 2024
Updated: Dec 11, 2024
CWE ID 89
Summary
CVE-2022-38947 is a newly disclosed SQL Injection vulnerability that affects the Flipkart-Clone-PHP version 1.0. The issue lies in the entry.php file, specifically the product_title parameter, which is susceptible to malicious SQL code injection. Attackers can exploit this vulnerability to execute arbitrary code, potentially gaining unauthorized access to sensitive data or taking control of the affected system. This security flaw poses a serious risk and requires immediate attention and patching to prevent potential attacks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share