Primary

Context

Netartmedia PHP Mall SQL Injection Vulnerability

Vulnerability

Multiple SQL injection vulnerabilities have been identified in Netartmedia PHP Mall version 4.1. These vulnerabilities allow unauthenticated attackers to manipulate database queries by injecting SQL code through various parameters. Exploitation of these vulnerabilities could lead to the extraction of sensitive database information, including user credentials and system data.

Impact

Exploitation of these vulnerabilities allows for SQL injection, where attackers can manipulate database queries to extract or potentially modify sensitive information.

Reproduction

The SQL injection vulnerability can be reproduced by sending crafted requests that include SQL payloads in the 'id' parameter of 'index.php' or the 'Email' parameter of 'loginaction.php'.

Added: Mar 12, 2026, 4:20 PM

Updated: Mar 12, 2026, 4:20 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

3.8

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

3.8

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Netartmedia PHP Mall SQL Injection Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating