📦 Gambio

CVE-2024-23759 is a critical deserialization vulnerability in Gambio e-commerce software that allows attackers to execute arbitrary code by exploiting the 'search' parameter in the Parcelshopfinder/Ad...

CVE-2024-23761 is a Server-Side Template Injection vulnerability in Gambio e-commerce software that allows attackers to execute arbitrary code by manipulating smarty email templates. This affects Gamb...

This SQL injection vulnerability in Gambio e-commerce software allows attackers to execute arbitrary SQL commands through crafted GET requests targeting the modifiers[attribute][] parameter. Attackers...