Описание
sitex allows remote attackers to obtain potentially sensitive information via a ' (quote) value for certain parameters, as demonstrated by parameters used in forum and search, which forces a SQL error.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:bj_sintay:sitex:0.7.3:*:*:*:*:*:*:*
EPSS
Процентиль: 59%
0.00376
Низкий
5 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
github
почти 4 года назад
sitex allows remote attackers to obtain potentially sensitive information via a ' (quote) value for certain parameters, as demonstrated by parameters used in forum and search, which forces a SQL error.
EPSS
Процентиль: 59%
0.00376
Низкий
5 Medium
CVSS2
Дефекты
CWE-200