exploitDog

GHSA-w3pj-mp82-r9qh

Опубликовано: 09 фев. 2022

Источник: github

Github: Не прошло ревью

Описание

SQL Injection vulnerability discovered in Unified Office Total Connect Now that would allow an attacker to extract sensitive information through a cookie parameter.

SQL Injection vulnerability discovered in Unified Office Total Connect Now that would allow an attacker to extract sensitive information through a cookie parameter.

Ссылки

EPSS

Процентиль: 62%

0.00427

Низкий

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2022-24121

CVSS3: 7.5

nvd

около 4 лет назад

SQL Injection vulnerability discovered in Unified Office Total Connect Now that would allow an attacker to extract sensitive information through a cookie parameter.

EPSS

Процентиль: 62%

0.00427

Низкий

CVE ID

Дефекты

CWE-89