Filtered by vendor Grocerycrud
Subscriptions
Filtered by product Grocery Crud
Subscriptions
Total
1 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2021-47811 | 1 Grocerycrud | 1 Grocery Crud | 2026-01-16 | 8.2 High |
| Grocery Crud 1.6.4 contains a SQL injection vulnerability in the order_by parameter that allows remote attackers to manipulate database queries. Attackers can inject malicious SQL code through the order_by[] parameter in POST requests to the ajax_list endpoint to potentially extract or modify database information. | ||||
Page 1 of 1.