exploitDog

GHSA-6g2v-vv47-v62p

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

SQL injection vulnerability in the login script in Real Estate listing website application template, when logging in as user or manager, allows remote attackers to execute arbitrary SQL commands via the Password parameter.

SQL injection vulnerability in the login script in Real Estate listing website application template, when logging in as user or manager, allows remote attackers to execute arbitrary SQL commands via the Password parameter.

Ссылки

EPSS

Процентиль: 79%

0.01263

Низкий

CVE ID

Связанные уязвимости

CVE-2007-4111

nvd

больше 18 лет назад

SQL injection vulnerability in the login script in Real Estate listing website application template, when logging in as user or manager, allows remote attackers to execute arbitrary SQL commands via the Password parameter.

EPSS

Процентиль: 79%

0.01263

Низкий

CVE ID