exploitDog

GHSA-h66g-2x3f-vgpp

Опубликовано: 18 сент. 2024

Источник: github

Github: Не прошло ревью

CVSS4: 9.4

CVSS3: 8.8

Описание

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Eliz Software Panel allows Command Line Execution through SQL Injection.This issue affects Panel: before v2.3.24.

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Eliz Software Panel allows Command Line Execution through SQL Injection.This issue affects Panel: before v2.3.24.

Ссылки

EPSS

Процентиль: 46%

0.00234

Низкий

9.4 Critical

CVSS4

8.8 High

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2024-5958

CVSS3: 8.8

nvd

больше 1 года назад

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Eliz Software Panel allows Command Line Execution through SQL Injection.This issue affects Panel: before v2.3.24.

EPSS

Процентиль: 46%

0.00234

Низкий

9.4 Critical

CVSS4

8.8 High

CVSS3

CVE ID

Дефекты

CWE-89