VDB
CVE-2024-7882
CVE-2024-7882
PUBLISHED
CVSS 6.5 MEDIUM
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Special Minds Design and Software e-Commerce allows SQL Injection.This issue affects e-Commerce: before 22.11.2024.
EPSS 0.09% · 26.3th percentile
Risk Scores
CVSS v3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
EPSS Score
0.09%
26.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Special Minds Design and Software | e-Commerce | 0 |
| special_minds | e-commerce | 0 |
Timeline
- Nov 22, 2024 CVE Published
- Nov 22, 2024 PoC Published
- Nov 23, 2024 EPSS Score
- Dec 11, 2024 EPSS Score
- Dec 29, 2024 EPSS Score
- Jan 15, 2025 EPSS Score
- Feb 1, 2025 EPSS Score
- Feb 16, 2025 Coalition ESS Score
- Feb 18, 2025 EPSS Score
- Mar 8, 2025 EPSS Score
- Mar 25, 2025 EPSS Score
- Apr 11, 2025 EPSS Score