Описание
SolarWinds Web Help Desk 12.7.0 allows CSV Injection, also known as Formula Injection, via a file attached to a ticket.
Ссылки
- Product
- ExploitThird Party Advisory
- Product
- Product
- ExploitThird Party Advisory
- Product
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:solarwinds:webhelpdesk:12.7.0:*:*:*:*:*:*:*
EPSS
Процентиль: 76%
0.00943
Низкий
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-1236
Связанные уязвимости
github
больше 3 лет назад
SolarWinds Web Help Desk 12.7.0 allows CSV Injection, also known as Formula Injection, via a file attached to a ticket.
EPSS
Процентиль: 76%
0.00943
Низкий
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-1236