exploitDog

GHSA-cc33-c78g-m59p

Опубликовано: 31 окт. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 6

Описание

A SQL Injection vulnerability was discovered in AbanteCart 1.4.0 in the update() function in public_html/admin/controller/responses/listing_grid/email_templates.php. The vulnerability is exploitable via the id parameter.

A SQL Injection vulnerability was discovered in AbanteCart 1.4.0 in the update() function in public_html/admin/controller/responses/listing_grid/email_templates.php. The vulnerability is exploitable via the id parameter.

Ссылки

EPSS

Процентиль: 19%

0.00058

Низкий

6 Medium

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2024-50802

CVSS3: 6

nvd

больше 1 года назад

A SQL Injection vulnerability was discovered in AbanteCart 1.4.0 in the update() function in public_html/admin/controller/responses/listing_grid/email_templates.php. The vulnerability is exploitable via the id parameter.

EPSS

Процентиль: 19%

0.00058

Низкий

6 Medium

CVSS3

CVE ID

Дефекты

CWE-89