Multiple SQL injection vulnerabilities in Alisveristr E-commerce allow remote attackers to bypass authentication and possibly execute arbitrary SQL commands via the username and password parameters in (1) the user login and (2) administrator login pages.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Alisveristr_e-commerce | Alisveristr | * | * |