exploitDog

GHSA-94fv-rcjg-wgvq

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

SQL injection vulnerability in inc/module/online.php in Easy-Clanpage 2.2 allows remote attackers to execute arbitrary SQL commands via the id parameter in a user details action, a different vector than CVE-2008-1425.

SQL injection vulnerability in inc/module/online.php in Easy-Clanpage 2.2 allows remote attackers to execute arbitrary SQL commands via the id parameter in a user details action, a different vector than CVE-2008-1425.

Ссылки

EPSS

Процентиль: 58%

0.0036

Низкий

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2008-1494

nvd

почти 18 лет назад

SQL injection vulnerability in inc/module/online.php in Easy-Clanpage 2.2 allows remote attackers to execute arbitrary SQL commands via the id parameter in a user details action, a different vector than CVE-2008-1425.

EPSS

Процентиль: 58%

0.0036

Низкий

CVE ID

Дефекты

CWE-89