Approved changes feed: RSS · Atom

cpe:2.3:a:bylancer:quickorder:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorBylancer (0bbe451a-93cb-55b4-85fe-dced7cef56b2)
ProductQuickorder (e9b7ad70-32c5-51b2-8f10-f9c7308f5940)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-3690 vulnerable 2026-06-08 06:09:40.184282 Bylancer QuickOrder GET Parameter blog sql injection
MEDIUM (6.3)
A vulnerability, which was classified as critical, has been found in Bylancer QuickOrder 6.3.7. Affected by this issue is some unknown functionality of the file /blog of the component GET Parameter Handler. The manipulation of the argument s leads to sql injection. The attack may be launched remotely. The identifier of this vulnerability is VDB-234236. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2023-07-16T16:00:04.841Z
Updated: 2024-08-02T07:01:57.517Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.