AI Score
Confidence
High
EPSS
Percentile
49.5%
The DB abstraction layer of OXID eSales 4.10.6 is vulnerable to SQL injection via the oxid or synchoxid parameter to the oxConfig::getRequestParameter() method in core/oxconfig.php.
demo.ripstech.com/main/%28scans/38/51//sidebar:types/38/51/0%29