exploitDog

GHSA-mc7p-wjfw-r9hm

Опубликовано: 09 июл. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 8.2

Описание

SQL injection vulnerability in login.php in Itsourcecode Online Discussion Forum Project in PHP with Source Code 1.0 allows remote attackers to execute arbitrary SQL commands via the email parameter.

SQL injection vulnerability in login.php in Itsourcecode Online Discussion Forum Project in PHP with Source Code 1.0 allows remote attackers to execute arbitrary SQL commands via the email parameter.

Ссылки

EPSS

Процентиль: 34%

0.00137

Низкий

8.2 High

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2024-37871

CVSS3: 8.2

nvd

больше 1 года назад

SQL injection vulnerability in login.php in Itsourcecode Online Discussion Forum Project in PHP with Source Code 1.0 allows remote attackers to execute arbitrary SQL commands via the email parameter.

EPSS

Процентиль: 34%

0.00137

Низкий

8.2 High

CVSS3

CVE ID

Дефекты

CWE-89