Vulnerability Details CVE-2023-38912
SQL injection vulnerability in Super Store Finder PHP Script v.3.6 allows a remote attacker to execute arbitrary code via a crafted payload to the username parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.041
EPSS Ranking 88.1%
CVSS Severity
CVSS v3 Score 9.8
References
- https://codecanyon.net/item/super-store-finder/3630922
- https://packetstormsecurity.com/files/173302/Super-Store-Finder-PHP-Script-3.6-SQL-Injection.html
- https://codecanyon.net/item/super-store-finder/3630922
- https://packetstormsecurity.com/files/173302/Super-Store-Finder-PHP-Script-3.6-SQL-Injection.html
Products affected by CVE-2023-38912
-
cpe:2.3:a:superstorefinder:php_script:3.6