Описание
A SQL injection vulnerability exists in Simple Task Scheduling System 1.0 when MySQL is being used as the application database. An attacker can issue SQL commands to the MySQL database through the vulnerable "id" parameter.
A SQL injection vulnerability exists in Simple Task Scheduling System 1.0 when MySQL is being used as the application database. An attacker can issue SQL commands to the MySQL database through the vulnerable "id" parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2022-30927
- https://github.com/ykosan1/Simple-Task-Scheduling-System-id-SQL-Injection-Unauthenticated
- https://www.sourcecodester.com/php/15328/simple-task-scheduler-system-phpoop-free-source-code.html
- https://www.sourcecodester.com/sites/default/files/download/oretnom23/tss.zip
Связанные уязвимости
CVSS3: 9.8
nvd
больше 3 лет назад
A SQL injection vulnerability exists in Simple Task Scheduling System 1.0 when MySQL is being used as the application database. An attacker can issue SQL commands to the MySQL database through the vulnerable "id" parameter.