exploitDog

GHSA-f6hp-vrm5-mh95

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

SQL injection vulnerability in Koobi CMS 4.2.3 through 4.3.0 allows remote attackers to execute arbitrary SQL commands via the categ parameter in a links action to index.php, a different vector than CVE-2008-1122.

SQL injection vulnerability in Koobi CMS 4.2.3 through 4.3.0 allows remote attackers to execute arbitrary SQL commands via the categ parameter in a links action to index.php, a different vector than CVE-2008-1122.

Ссылки

EPSS

Процентиль: 73%

0.00793

Низкий

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2008-1336

nvd

почти 18 лет назад

SQL injection vulnerability in Koobi CMS 4.2.3 through 4.3.0 allows remote attackers to execute arbitrary SQL commands via the categ parameter in a links action to index.php, a different vector than CVE-2008-1122.

EPSS

Процентиль: 73%

0.00793

Низкий

CVE ID

Дефекты

CWE-89