exploitDog

GHSA-ww9q-7hpq-99j7

Опубликовано: 29 апр. 2022

Источник: github

Github: Не прошло ревью

Описание

SQL injection vulnerability in variables.php in Goldlink 3.0 allows remote attackers to execute arbitrary SQL commands via the (1) vadmin_login or (2) vadmin_pass cookie in a request to goldlink.php.

SQL injection vulnerability in variables.php in Goldlink 3.0 allows remote attackers to execute arbitrary SQL commands via the (1) vadmin_login or (2) vadmin_pass cookie in a request to goldlink.php.

Ссылки

EPSS

Процентиль: 53%

0.00301

Низкий

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2003-1504

nvd

больше 21 года назад

SQL injection vulnerability in variables.php in Goldlink 3.0 allows remote attackers to execute arbitrary SQL commands via the (1) vadmin_login or (2) vadmin_pass cookie in a request to goldlink.php.

EPSS

Процентиль: 53%

0.00301

Низкий

CVE ID

Дефекты

CWE-89