View Issue Details

Jump to Notes
IDProjectCategoryView StatusDate SubmittedLast Update
0007002OXID eShop (all versions)4.04. Securitypublic2019-06-26 14:522019-08-02 09:32
Reportermarco_steinhaeuser Assigned To 
PriorityurgentSeveritycrashReproducibilityalways
Status resolvedResolutionfixed 
Product Version6.1.3 
Fixed in Version6.0.5 
Summary0007002: Pre-Auth SQL injection possible
DescriptionRemote Code Execution possible due to the possibility of Pre-Auth SQL injection.
Additional InformationCredits: Robin Peraglie (ripstech.com)
TagsNo tags attached.
ThemeNot defined
BrowserNot defined
PHP VersionNot defined
Database VersionNot defined

Activities

There are no notes attached to this issue.