exploitDog

GHSA-6q4m-r7w6-3f7x

Опубликовано: 22 нояб. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

AeroCMS v0.0.1 was discovered to contain a SQL Injection vulnerability via the p_id parameter at \post.php. This vulnerability allows attackers to access database information.

AeroCMS v0.0.1 was discovered to contain a SQL Injection vulnerability via the p_id parameter at \post.php. This vulnerability allows attackers to access database information.

Ссылки

EPSS

Процентиль: 50%

0.00267

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2022-45331

CVSS3: 7.5

nvd

около 3 лет назад

AeroCMS v0.0.1 was discovered to contain a SQL Injection vulnerability via the p_id parameter at \post.php. This vulnerability allows attackers to access database information.

EPSS

Процентиль: 50%

0.00267

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-89