CVE-2019-25540

Name of the Vulnerable Software and Affected Versions Netartmedia PHP Mall version 4.1

Description The software contains multiple SQL injection flaws that allow unauthenticated attackers to manipulate database queries. Attackers can inject SQL code through various parameters to extract sensitive information from the database, including user credentials and system data.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.