exploitDog

GHSA-27q3-ffrp-2fr5

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

SQL injection vulnerability in search.asp in Digitizing Quote And Ordering System 1.0 allows remote authenticated users to execute arbitrary SQL commands via the ordernum parameter.

SQL injection vulnerability in search.asp in Digitizing Quote And Ordering System 1.0 allows remote authenticated users to execute arbitrary SQL commands via the ordernum parameter.

Ссылки

EPSS

Процентиль: 51%

0.00279

Низкий

CVE ID

Связанные уязвимости

CVE-2006-6911

nvd

больше 18 лет назад

SQL injection vulnerability in search.asp in Digitizing Quote And Ordering System 1.0 allows remote authenticated users to execute arbitrary SQL commands via the ordernum parameter.

EPSS

Процентиль: 51%

0.00279

Низкий

CVE ID