exploitDog

GHSA-j4qh-gv6q-2rj5

Опубликовано: 29 июл. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.7

Описание

A SQL Injection vulnerability exists in the action.php endpoint of PuneethReddyHC Online Shopping System Advanced 1.0 due to improper sanitization of user-supplied input in the keyword POST parameter.

A SQL Injection vulnerability exists in the action.php endpoint of PuneethReddyHC Online Shopping System Advanced 1.0 due to improper sanitization of user-supplied input in the keyword POST parameter.

Ссылки

EPSS

Процентиль: 5%

0.00022

Низкий

7.7 High

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2025-51970

CVSS3: 7.7

nvd

6 месяцев назад

A SQL Injection vulnerability exists in the action.php endpoint of PuneethReddyHC Online Shopping System Advanced 1.0 due to improper sanitization of user-supplied input in the keyword POST parameter.

EPSS

Процентиль: 5%

0.00022

Низкий

7.7 High

CVSS3

CVE ID

Дефекты

CWE-89