CVE-2014-125076

Опубликовано: 11 янв. 2023

Источник: nvd

CVSS3: 5.5

CVSS3: 9.8

CVSS2: 5.2

EPSS Низкий

Описание

A vulnerability was found in NoxxieNl Criminals. It has been classified as critical. Affected is an unknown function of the file ingame/roulette.php. The manipulation of the argument gambleMoney leads to sql injection. The patch is identified as 0a60b31271d4cbf8babe4be993d2a3a1617f0897. It is recommended to apply a patch to fix this issue. VDB-218022 is the identifier assigned to this vulnerability.

Ссылки

https://github.com/NoxxieNl/Criminals/commit/0a60b31271d4cbf8babe4be993d2a3a1617f0897
Patch
https://vuldb.com/?ctiid.218022
Permissions Required
Third Party Advisory
https://vuldb.com/?id.218022
Third Party Advisory
https://github.com/NoxxieNl/Criminals/commit/0a60b31271d4cbf8babe4be993d2a3a1617f0897
Patch
https://vuldb.com/?ctiid.218022
Permissions Required
Third Party Advisory
https://vuldb.com/?id.218022
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:criminals_project:criminals:-:*:*:*:*:*:*:*

EPSS

Процентиль: 52%

0.00291

Низкий

5.5 Medium

CVSS3

9.8 Critical

CVSS3

5.2 Medium

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-cpj5-8p43-2gqc

CVSS3: 9.8

github

около 3 лет назад

A vulnerability was found in NoxxieNl Criminals. It has been classified as critical. Affected is an unknown function of the file ingame/roulette.php. The manipulation of the argument gambleMoney leads to sql injection. The name of the patch is 0a60b31271d4cbf8babe4be993d2a3a1617f0897. It is recommended to apply a patch to fix this issue. VDB-218022 is the identifier assigned to this vulnerability.

EPSS

Процентиль: 52%

0.00291

Низкий

5.5 Medium

CVSS3

9.8 Critical

CVSS3

5.2 Medium

CVSS2

Дефекты

CWE-89