Multiple Time-Based SQL Injection Vulnerabilities in Online Shopping Portal by Online Shopping Portal
CVE-2021-46110
9.8CRITICAL
What is CVE-2021-46110?
The Online Shopping Portal v3.1 has been identified to have multiple vulnerabilities that allow for time-based SQL injection through the email and contactno parameters. This flaw could enable attackers to execute unauthorized SQL commands, potentially leading to data leakage or manipulation. It is crucial for users of this software to apply the necessary updates and patches to mitigate the risks associated with these vulnerabilities.