CVE-2024-24027 | Likeshop up to 2.5.6 getFansLists sql injection

CVE-2024-24027 | Likeshop up to 2.5.6 getFansLists sql injection

A vulnerability, which was classified as critical, has been found in Likeshop up to 2.5.6. Affected by this issue is the function DistributionMemberLogic::getFansLists. The manipulation leads to sql injection. This vulnerability is handled as CVE-2024-24027. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.