exploitDog

GHSA-387h-m4cp-4mwp

Опубликовано: 25 янв. 2022

Источник: github

Github: Не прошло ревью

Описание

SQL injection vulnerability in Sourcecodester Storage Unit Rental Management System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username parameter to /storage/classes/Login.php.

SQL injection vulnerability in Sourcecodester Storage Unit Rental Management System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username parameter to /storage/classes/Login.php.

Ссылки

EPSS

Процентиль: 50%

0.00264

Низкий

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2021-40907

CVSS3: 9.8

nvd

около 4 лет назад

SQL injection vulnerability in Sourcecodester Storage Unit Rental Management System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username parameter to /storage/classes/Login.php.

EPSS

Процентиль: 50%

0.00264

Низкий

CVE ID

Дефекты

CWE-89