exploitDog

GHSA-2qhc-fjv7-8f36

Опубликовано: 26 авг. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

A SQL injection vulnerability in license_update.php in Mumara Classic through 2.93 allows a remote unauthenticated attacker to execute arbitrary SQL commands via the license parameter.

A SQL injection vulnerability in license_update.php in Mumara Classic through 2.93 allows a remote unauthenticated attacker to execute arbitrary SQL commands via the license parameter.

Ссылки

EPSS

Процентиль: 93%

0.09368

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2021-43329

CVSS3: 9.8

nvd

больше 3 лет назад

A SQL injection vulnerability in license_update.php in Mumara Classic through 2.93 allows a remote unauthenticated attacker to execute arbitrary SQL commands via the license parameter.

EPSS

Процентиль: 93%

0.09368

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-89