exploitDog

GHSA-6mr7-g7xq-392p

Опубликовано: 07 окт. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.2

Описание

Open Source SACCO Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /sacco_shield/ajax.php?action=delete_loan.

Open Source SACCO Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /sacco_shield/ajax.php?action=delete_loan.

Ссылки

EPSS

Процентиль: 49%

0.0026

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2022-41514

CVSS3: 7.2

nvd

больше 3 лет назад

Open Source SACCO Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /sacco_shield/ajax.php?action=delete_loan.

EPSS

Процентиль: 49%

0.0026

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-89