Critical severity9.1NVD Advisory· Published Feb 19, 2016· Updated Jun 17, 2026
CVE-2016-1154
CVE-2016-1154
Description
SQL injection vulnerability in the Help plug-in 1.3.5 and earlier in Cuore EC-CUBE allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=1.3.5
Patches
Vulnerability mechanics
References
3- jvn.jp/en/jp/JVN31524757/index.htmlnvdVendor Advisory
- jvndb.jvn.jp/jvndb/JVNDB-2016-000027nvdVendor Advisory
- www.ec-cube.net/products/detail.phpnvd
News mentions
0No linked articles in our index yet.