exploitDog

GHSA-525m-xhw8-m6pr

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

SQL injection vulnerability in index.php in WebSPELL 4.01.01 and earlier allows remote attackers to execute arbitrary SQL commands via the getsquad parameter, a different vector than CVE-2006-4783.

SQL injection vulnerability in index.php in WebSPELL 4.01.01 and earlier allows remote attackers to execute arbitrary SQL commands via the getsquad parameter, a different vector than CVE-2006-4783.

Ссылки

EPSS

Процентиль: 75%

0.00909

Низкий

CVE ID

Связанные уязвимости

CVE-2006-5388

nvd

больше 19 лет назад

SQL injection vulnerability in index.php in WebSPELL 4.01.01 and earlier allows remote attackers to execute arbitrary SQL commands via the getsquad parameter, a different vector than CVE-2006-4783.

EPSS

Процентиль: 75%

0.00909

Низкий

CVE ID