GHSA-cvvr-g85h-7583

Опубликовано: 16 авг. 2023

Источник: github

Github: Не прошло ревью

Описание

Pikachu v1.0 was discovered to contain a SQL injection vulnerability via the $username parameter at \inc\function.php.

Ссылки

https://nvd.nist.gov/vuln/detail/CVE-2023-39849
https://github.com/KLSEHB/vulnerability-report/blob/main/Pikachu_CVE-2023-39849
https://github.com/zhuifengshaonianhanlu/pikachu
https://github.com/zhuifengshaonianhanlu/pikachu/blob/master/README.md

CVE ID

CVE-2023-39849

Связанные уязвимости

CVE-2023-39849

nvd

больше 2 лет назад

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.

CVE ID

CVE-2023-39849