exploitDog

GHSA-92pp-5g9w-8mgr

Опубликовано: 29 дек. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

CSV Injection vulnerability in Sesami Cash Point & Transport Optimizer (CPTO) version 6.3.8.6 (#718), allows remote attackers to obtain sensitive information via the Delivery Name field.

CSV Injection vulnerability in Sesami Cash Point & Transport Optimizer (CPTO) version 6.3.8.6 (#718), allows remote attackers to obtain sensitive information via the Delivery Name field.

Ссылки

EPSS

Процентиль: 46%

0.00233

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-1236

Связанные уязвимости

CVE-2023-31294

CVSS3: 7.5

nvd

около 2 лет назад

CSV Injection vulnerability in Sesami Cash Point & Transport Optimizer (CPTO) version 6.3.8.6 (#718), allows remote attackers to obtain sensitive information via the Delivery Name field.

EPSS

Процентиль: 46%

0.00233

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-1236