exploitDog

GHSA-5r7m-2m37-wmpq

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

SQL injection vulnerability in list.php in University of Queensland Library Fez 1.3 and 2.0 RC1 allows remote attackers to execute arbitrary SQL commands via the parent_id parameter in a subject action.

SQL injection vulnerability in list.php in University of Queensland Library Fez 1.3 and 2.0 RC1 allows remote attackers to execute arbitrary SQL commands via the parent_id parameter in a subject action.

Ссылки

EPSS

Процентиль: 52%

0.00288

Низкий

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2008-6028

nvd

около 17 лет назад

SQL injection vulnerability in list.php in University of Queensland Library Fez 1.3 and 2.0 RC1 allows remote attackers to execute arbitrary SQL commands via the parent_id parameter in a subject action.

EPSS

Процентиль: 52%

0.00288

Низкий

CVE ID

Дефекты

CWE-89