exploitDog

GHSA-2mfw-qmh9-qc8p

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

Описание

SQL injection vulnerability in d4d/statusFilter.php in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.2 allows remote authenticated users to execute arbitrary SQL commands via the q parameter.

SQL injection vulnerability in d4d/statusFilter.php in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.2 allows remote authenticated users to execute arbitrary SQL commands via the q parameter.

Ссылки

EPSS

Процентиль: 100%

0.90336

Критический

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2012-2962

nvd

больше 13 лет назад

SQL injection vulnerability in d4d/statusFilter.php in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.2 allows remote authenticated users to execute arbitrary SQL commands via the q parameter.

EPSS

Процентиль: 100%

0.90336

Критический

CVE ID

Дефекты

CWE-89