exploitDog

GHSA-m733-2g3q-cc5v

Опубликовано: 30 апр. 2022

Источник: github

Github: Не прошло ревью

Описание

SQL injection vulnerability in auth.inc.php in Thatware 0.5.0 and earlier allows remote attackers to execute arbitrary SQL commands via a base64-encoded user parameter.

SQL injection vulnerability in auth.inc.php in Thatware 0.5.0 and earlier allows remote attackers to execute arbitrary SQL commands via a base64-encoded user parameter.

Ссылки

EPSS

Процентиль: 57%

0.0036

Низкий

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2002-2252

nvd

больше 22 лет назад

SQL injection vulnerability in auth.inc.php in Thatware 0.5.0 and earlier allows remote attackers to execute arbitrary SQL commands via a base64-encoded user parameter.

EPSS

Процентиль: 57%

0.0036

Низкий

CVE ID

Дефекты

CWE-89