Описание
SQL-Ledger before 2.4.4 stores a password in a query string, which might allow context-dependent attackers to obtain the password via a Referer field or browser history.
Ссылки
- ExploitPatch
- ExploitPatch
Уязвимые конфигурации
Конфигурация 1Версия до 2.4.3 (включая)
cpe:2.3:a:dws_systems_inc.:sql-ledger:*:*:*:*:*:*:*:*
EPSS
Процентиль: 59%
0.00387
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
ubuntu
почти 19 лет назад
SQL-Ledger before 2.4.4 stores a password in a query string, which might allow context-dependent attackers to obtain the password via a Referer field or browser history.
debian
почти 19 лет назад
SQL-Ledger before 2.4.4 stores a password in a query string, which mig ...
github
больше 3 лет назад
SQL-Ledger before 2.4.4 stores a password in a query string, which might allow context-dependent attackers to obtain the password via a Referer field or browser history.
EPSS
Процентиль: 59%
0.00387
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other