exploitDog

GHSA-7f7v-p3j5-xjjr

Опубликовано: 01 янв. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

Multiple SQL injections in Sage XRT Business Exchange 12.4.302 allow an authenticated attacker to inject malicious data in SQL queries: Add Currencies, Payment Order, and Transfer History.

Multiple SQL injections in Sage XRT Business Exchange 12.4.302 allow an authenticated attacker to inject malicious data in SQL queries: Add Currencies, Payment Order, and Transfer History.

Ссылки

EPSS

Процентиль: 86%

0.02773

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2022-34324

CVSS3: 8.8

nvd

около 3 лет назад

Multiple SQL injections in Sage XRT Business Exchange 12.4.302 allow an authenticated attacker to inject malicious data in SQL queries: Add Currencies, Payment Order, and Transfer History.

EPSS

Процентиль: 86%

0.02773

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-89