exploitDog

GHSA-rfpc-x6fq-w55m

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.3

Описание

Multiple SQL injection vulnerabilities in admin.php in the Collne Welcart plugin before 1.5.3 for WordPress allow remote authenticated users to execute arbitrary SQL commands via the (1) search[column] or (2) switch parameter.

Multiple SQL injection vulnerabilities in admin.php in the Collne Welcart plugin before 1.5.3 for WordPress allow remote authenticated users to execute arbitrary SQL commands via the (1) search[column] or (2) switch parameter.

Ссылки

EPSS

Процентиль: 60%

0.00394

Низкий

6.3 Medium

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2015-7791

CVSS3: 6.3

nvd

около 10 лет назад

Multiple SQL injection vulnerabilities in admin.php in the Collne Welcart plugin before 1.5.3 for WordPress allow remote authenticated users to execute arbitrary SQL commands via the (1) search[column] or (2) switch parameter.

EPSS

Процентиль: 60%

0.00394

Низкий

6.3 Medium

CVSS3

CVE ID

Дефекты

CWE-89