CVE-2023-41507

Name of the Vulnerable Software and Affected Versions Super Store Finder version 3.6

Description The issue is related to a lack of protection against SQL query structure exploitation, which can allow a remote attacker to gain access to the administration panel. The store locator component is affected via the products, distance, lat, and lng parameters.

Recommendations For Super Store Finder version 3.6, consider disabling the store locator component until a patch is available to prevent exploitation of the SQL injection vulnerabilities. Restrict access to the administration panel to minimize the risk of unauthorized access. Avoid using the products, distance, lat, and lng parameters in the affected component until the issue is resolved.