Описание
Multiple SQL injection vulnerabilities in gallery.php in webSPELL 4.01.02 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) galleryID parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.
Уязвимые конфигурации
Конфигурация 1Версия до 4.01.02 (включая)
cpe:2.3:a:webspell:webspell:*:*:*:*:*:*:*:*
EPSS
Процентиль: 65%
0.0049
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Multiple SQL injection vulnerabilities in gallery.php in webSPELL 4.01.02 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) galleryID parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.
EPSS
Процентиль: 65%
0.0049
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other