exploitDog

GHSA-xgcx-vvr8-486q

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

In Joomla! 3.5.0 through 3.8.5, the lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the User Notes list view.

In Joomla! 3.5.0 through 3.8.5, the lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the User Notes list view.

Ссылки

EPSS

Процентиль: 95%

0.20498

Средний

8.8 High

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2018-8045

CVSS3: 8.8

nvd

почти 8 лет назад

In Joomla! 3.5.0 through 3.8.5, the lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the User Notes list view.

EPSS

Процентиль: 95%

0.20498

Средний

8.8 High

CVSS3

CVE ID

Дефекты

CWE-89