exploitDog

GHSA-fxj2-prj4-mpf5

Опубликовано: 22 янв. 2022

Источник: github

Github: Не прошло ревью

Описание

SQL injection vulnerability in Sourcecodester Online Leave Management System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username parameter to /leave_system/classes/Login.php.

SQL injection vulnerability in Sourcecodester Online Leave Management System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username parameter to /leave_system/classes/Login.php.

Ссылки

EPSS

Процентиль: 57%

0.00348

Низкий

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2021-40595

CVSS3: 9.8

nvd

около 4 лет назад

SQL injection vulnerability in Sourcecodester Online Leave Management System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username parameter to /leave_system/classes/Login.php.

EPSS

Процентиль: 57%

0.00348

Низкий

CVE ID

Дефекты

CWE-89