exploitDog

GHSA-r7mj-3g43-28gm

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

EgavilanMedia ECM Address Book 1.0 is affected by SQL injection. An attacker can bypass the Admin Login panel through SQLi and get Admin access and add or remove any user.

EgavilanMedia ECM Address Book 1.0 is affected by SQL injection. An attacker can bypass the Admin Login panel through SQLi and get Admin access and add or remove any user.

Ссылки

EPSS

Процентиль: 54%

0.00316

Низкий

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2020-35276

CVSS3: 9.8

nvd

около 5 лет назад

EgavilanMedia ECM Address Book 1.0 is affected by SQL injection. An attacker can bypass the Admin Login panel through SQLi and get Admin access and add or remove any user.

EPSS

Процентиль: 54%

0.00316

Низкий

CVE ID

Дефекты

CWE-89