Website Auction Marketplace
1 CVEs
product
Monthly
Website Auction Marketplace 2.0.5 has SQL Injection via the search.php cat_id parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
SQLi
PHP
Website Auction Marketplace
NVD
Exploit-DB
CVSS 3.0
9.8
EPSS
2.5%
EPSS 3%
CVSS 9.8
CRITICAL
POC
Act Now
Website Auction Marketplace 2.0.5 has SQL Injection via the search.php cat_id parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
SQLi
PHP
Website Auction Marketplace
NVD
Exploit-DB