exploitDog

GHSA-m252-5c67-5535

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

SQL injection vulnerability in merchants/index.php in Post Affiliate Pro 3 and 3.1.4 allows remote attackers to execute arbitrary SQL commands via the umprof_status parameter.

SQL injection vulnerability in merchants/index.php in Post Affiliate Pro 3 and 3.1.4 allows remote attackers to execute arbitrary SQL commands via the umprof_status parameter.

Ссылки

EPSS

Процентиль: 75%

0.00897

Низкий

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2008-5630

nvd

около 17 лет назад

SQL injection vulnerability in merchants/index.php in Post Affiliate Pro 3 and 3.1.4 allows remote attackers to execute arbitrary SQL commands via the umprof_status parameter.

EPSS

Процентиль: 75%

0.00897

Низкий

CVE ID

Дефекты

CWE-89