exploitDog

GHSA-pmpv-r42h-c8xr

Опубликовано: 26 нояб. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

OpenCode Systems USSD Gateway OC Release: 5 Version 6.13.11 was discovered to contain a SQL injection vulnerability via the ID parameter in the getSubUsersByProvider function.

OpenCode Systems USSD Gateway OC Release: 5 Version 6.13.11 was discovered to contain a SQL injection vulnerability via the ID parameter in the getSubUsersByProvider function.

Ссылки

EPSS

Процентиль: 14%

0.00045

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2025-65235

CVSS3: 9.8

nvd

2 месяца назад

OpenCode Systems USSD Gateway OC Release: 5 Version 6.13.11 was discovered to contain a SQL injection vulnerability via the ID parameter in the getSubUsersByProvider function.

EPSS

Процентиль: 14%

0.00045

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-89