exploitDog

GHSA-666p-vffc-r2ch

Опубликовано: 27 фев. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 7.2

Описание

SQL Injection vulnerability in Likeshop before 2.5.7 allows attackers to run abitrary SQL commands via the function DistributionMemberLogic::getFansLists.

SQL Injection vulnerability in Likeshop before 2.5.7 allows attackers to run abitrary SQL commands via the function DistributionMemberLogic::getFansLists.

Ссылки

EPSS

Процентиль: 33%

0.00133

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2024-24027

CVSS3: 7.2

nvd

почти 2 года назад

SQL Injection vulnerability in Likeshop before 2.5.7 allows attackers to run abitrary SQL commands via the function DistributionMemberLogic::getFansLists.

EPSS

Процентиль: 33%

0.00133

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-89