exploitDog

GHSA-rvp8-xxf9-v75q

Опубликовано: 06 мар. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Improper Validation of Syntactic Correctness of Input vulnerability in Finder Fire Safety Finder ERP/CRM (New System) allows SQL Injection.This issue affects Finder ERP/CRM (New System): before 18.12.2024.

Improper Validation of Syntactic Correctness of Input vulnerability in Finder Fire Safety Finder ERP/CRM (New System) allows SQL Injection.This issue affects Finder ERP/CRM (New System): before 18.12.2024.

Ссылки

EPSS

Процентиль: 26%

0.00091

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-1286

CWE-89

Связанные уязвимости

CVE-2024-12146

CVSS3: 7.5

nvd

11 месяцев назад

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Finder Fire Safety Finder ERP/CRM (New System) allows SQL Injection.This issue affects Finder ERP/CRM (New System): before 18.12.2024.

EPSS

Процентиль: 26%

0.00091

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-1286

CWE-89