exploitDog

GHSA-gp6m-m3pw-7m24

Опубликовано: 25 июн. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

SQL Injection vulnerability in the module "Help Desk - Customer Support Management System" (helpdesk) up to version 2.4.0 from FME Modules for PrestaShop allows attackers to obtain sensitive information and cause other impacts via 'Tickets::getsearchedtickets()'

SQL Injection vulnerability in the module "Help Desk - Customer Support Management System" (helpdesk) up to version 2.4.0 from FME Modules for PrestaShop allows attackers to obtain sensitive information and cause other impacts via 'Tickets::getsearchedtickets()'

Ссылки

EPSS

Процентиль: 41%

0.00191

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2024-34992

CVSS3: 8.8

nvd

больше 1 года назад

SQL Injection vulnerability in the module "Help Desk - Customer Support Management System" (helpdesk) up to version 2.4.0 from FME Modules for PrestaShop allows attackers to obtain sensitive information and cause other impacts via 'Tickets::getsearchedtickets()'

EPSS

Процентиль: 41%

0.00191

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-89