Skip to main content
CVE-2018-10284 CRITICAL POC Act Now

Adaltech G-Ticket v70 EME104 has SQL Injection via the mobile-loja/mensagem.asp eve_cod parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi G Ticket
NVD
CVSS 3.0
9.8
EPSS
1.1%
CVE-2018-10283 CRITICAL POC Act Now

CliqueMania loja virtual 14 has SQL Injection via the patch/remote.php id parameter in a recomendar action. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Loja Virtual
NVD
CVSS 3.0
9.8
EPSS
1.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy