exploitDog

GHSA-3jph-25vj-7g8w

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

SQL injection vulnerability in Benders Calendar 1.0 allows remote attackers to execute arbitrary SQL commands via multiple parameters, as demonstrated by the (1) year, (2) month, and (3) day parameters.

SQL injection vulnerability in Benders Calendar 1.0 allows remote attackers to execute arbitrary SQL commands via multiple parameters, as demonstrated by the (1) year, (2) month, and (3) day parameters.

Ссылки

EPSS

Процентиль: 81%

0.01467

Низкий

CVE ID

Связанные уязвимости

CVE-2006-0252

nvd

около 20 лет назад

SQL injection vulnerability in Benders Calendar 1.0 allows remote attackers to execute arbitrary SQL commands via multiple parameters, as demonstrated by the (1) year, (2) month, and (3) day parameters.

EPSS

Процентиль: 81%

0.01467

Низкий

CVE ID