VYPR
Critical severityNVD Advisory· Published Jul 29, 2021· Updated Aug 4, 2024

CVE-2020-21809

CVE-2020-21809

Description

SQL Injection vulnerability in NukeViet CMS module Shops 4.0.29 and 4.3 via the (1) listid parameter in detail.php and the (2) group_price or groupid parameters in search_result.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
nukeviet/nukevietPackagist
>= 4.0, < 4.0.294.0.29
nukeviet/nukevietPackagist
>= 4.1, < 4.1.024.1.02
nukeviet/nukevietPackagist
>= 4.2, < 4.2.014.2.01

Affected products

2

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.