← back
CVE-2024-28560mediumCWE-89

CVE-2024-28560

13Vexday Risk Score

No sign of exploitation. No public exploitation artifact known so far.

ssvc Trackcvss 5.4epss 0.5%
exploitation probability
0.5%top 63% of all CVEs
observed exploitation
nono source reports it
SQL injection vulnerability in Niushop B2B2C v.5.3.3 and before allows an attacker to escalate privileges via the deleteArea() function of the Address.php component.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Affected products
n/a · n/a