exploitDog

GHSA-cffq-m726-w77f

Опубликовано: 22 янв. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

SQL injection vulnerability in Sourcecodester Budget and Expense Tracker System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username field.

SQL injection vulnerability in Sourcecodester Budget and Expense Tracker System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username field.

Ссылки

EPSS

Процентиль: 92%

0.07821

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2021-40247

CVSS3: 9.8

nvd

около 4 лет назад

SQL injection vulnerability in Sourcecodester Budget and Expense Tracker System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username field.

EPSS

Процентиль: 92%

0.07821

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-89