SQL Injection Vulnerability in Welcart e-Commerce Order Data Edit Page (Versions 2.7 to 2.8.21)

CVE-2023-43610 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

SQL injection vulnerability in Order Data Edit page of Welcart e-Commerce versions 2.7 to 2.8.21 allows a user with editor (without setting authority) or higher privilege to perform unintended database operations.

Learn more about our E Commerce Pen Testing.