exploitDog

GHSA-vv3r-w2j4-7q66

Опубликовано: 30 сент. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

Time-based SQL Injection vulnerabilities were found in Metersphere v1.15.4 via the "orders" parameter.

Time-based SQL Injection vulnerabilities were found in Metersphere v1.15.4 via the "orders" parameter.

Ссылки

EPSS

Процентиль: 94%

0.1339

Средний

8.8 High

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2021-45788

CVSS3: 8.8

nvd

больше 3 лет назад

Time-based SQL Injection vulnerabilities were found in Metersphere v1.15.4 via the "orders" parameter.

EPSS

Процентиль: 94%

0.1339

Средний

8.8 High

CVSS3

CVE ID

Дефекты

CWE-89