exploitDog

GHSA-pc6j-99x3-m7cv

Опубликовано: 29 апр. 2022

Источник: github

Github: Не прошло ревью

Описание

Multiple SQL injection vulnerabilities in usersL.php3 in PHPMyChat 0.14.5 allow remote attackers to execute arbitrary SQL commands via the (1) sortBy, (2) sortOrder, (3) startReg, (4) U, (5) LastCheck , and (6) R parameters.

Multiple SQL injection vulnerabilities in usersL.php3 in PHPMyChat 0.14.5 allow remote attackers to execute arbitrary SQL commands via the (1) sortBy, (2) sortOrder, (3) startReg, (4) U, (5) LastCheck , and (6) R parameters.

Ссылки

EPSS

Процентиль: 68%

0.00571

Низкий

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2004-2716

nvd

около 21 года назад

Multiple SQL injection vulnerabilities in usersL.php3 in PHPMyChat 0.14.5 allow remote attackers to execute arbitrary SQL commands via the (1) sortBy, (2) sortOrder, (3) startReg, (4) U, (5) LastCheck , and (6) R parameters.

EPSS

Процентиль: 68%

0.00571

Низкий

CVE ID

Дефекты

CWE-89