exploitDog

CVE-2014-100035

Опубликовано: 13 янв. 2015

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

SQL injection vulnerability in the ticket grid in the admin interface in LicensePal ArcticDesk before 1.2.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Ссылки

http://www.arcticdesk.com/support/announcements/arcticdesk-v1-2-5-maintenance-release-18.html
Vendor Advisory
http://www.arcticdesk.com/support/announcements/arcticdesk-v1-2-5-maintenance-release-18.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:licensepal:arcticdesk:*:*:*:*:*:*:*:*

Версия до 1.2.4 (включая)

EPSS

Процентиль: 58%

0.00366

Низкий

7.5 High

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-c7f2-5336-87pq

github

больше 3 лет назад

SQL injection vulnerability in the ticket grid in the admin interface in LicensePal ArcticDesk before 1.2.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

EPSS

Процентиль: 58%

0.00366

Низкий

7.5 High

CVSS2

Дефекты

CWE-89