Описание
SQL injection vulnerability in login.asp of Brooky eStore 1.0.1 through 1.0.2b allows remote attackers to bypass authentication and execute arbitrary SQL code via the (1) user or (2) pass parameters.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:brooky:estore:1.0.2b:*:*:*:*:*:*:*
EPSS
Процентиль: 78%
0.01239
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
SQL injection vulnerability in login.asp of Brooky eStore 1.0.1 through 1.0.2b allows remote attackers to bypass authentication and execute arbitrary SQL code via the (1) user or (2) pass parameters.
EPSS
Процентиль: 78%
0.01239
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other