exploitDog

GHSA-8ghf-hrfq-8q3j

Опубликовано: 02 июн. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.3

Описание

A time-based SQL injection vulnerability exists in mydetailsstudent.php in the CloudClassroom PHP Project 1.0. The myds parameter does not properly validate user input, allowing an attacker to inject arbitrary SQL commands.

A time-based SQL injection vulnerability exists in mydetailsstudent.php in the CloudClassroom PHP Project 1.0. The myds parameter does not properly validate user input, allowing an attacker to inject arbitrary SQL commands.

Ссылки

EPSS

Процентиль: 10%

0.00034

Низкий

7.3 High

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2024-57459

CVSS3: 7.3

nvd

8 месяцев назад

A time-based SQL injection vulnerability exists in mydetailsstudent.php in the CloudClassroom PHP Project 1.0. The myds parameter does not properly validate user input, allowing an attacker to inject arbitrary SQL commands.

EPSS

Процентиль: 10%

0.00034

Низкий

7.3 High

CVSS3

CVE ID

Дефекты

CWE-89