exploitDog

GHSA-hp6g-q29f-jr3v

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

SQL injection vulnerability in search_result.php in Softbiz Web Host Directory Script, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the host_id parameter, a different vector than CVE-2005-3817.

SQL injection vulnerability in search_result.php in Softbiz Web Host Directory Script, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the host_id parameter, a different vector than CVE-2005-3817.

Ссылки

EPSS

Процентиль: 77%

0.01033

Низкий

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2008-2087

nvd

почти 18 лет назад

SQL injection vulnerability in search_result.php in Softbiz Web Host Directory Script, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the host_id parameter, a different vector than CVE-2005-3817.

EPSS

Процентиль: 77%

0.01033

Низкий

CVE ID

Дефекты

CWE-89