exploitDog

GHSA-2px4-jf33-3273

Опубликовано: 28 янв. 2026

Источник: github

Github: Не прошло ревью

CVSS3: 8.6

Описание

Explorance Blue versions prior to 8.14.9 contain a SQL injection vulnerability caused by insufficient validation of user-supplied input in a web application component. Crafted input can be executed as part of backend database queries. The issue is exploitable without authentication, significantly elevating the risk.

Explorance Blue versions prior to 8.14.9 contain a SQL injection vulnerability caused by insufficient validation of user-supplied input in a web application component. Crafted input can be executed as part of backend database queries. The issue is exploitable without authentication, significantly elevating the risk.

Ссылки

EPSS

Процентиль: 26%

0.00092

Низкий

8.6 High

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2025-57793

CVSS3: 8.6

nvd

11 дней назад

Explorance Blue versions prior to 8.14.9 contain a SQL injection vulnerability caused by insufficient validation of user-supplied input in a web application component. Crafted input can be executed as part of backend database queries. The issue is exploitable without authentication, significantly elevating the risk.

EPSS

Процентиль: 26%

0.00092

Низкий

8.6 High

CVSS3

CVE ID

Дефекты

CWE-89