exploitDog

CVE-2019-25444

Опубликовано: 20 фев. 2026

Источник: nvd

CVSS3: 9.1

EPSS Низкий

Описание

Fiverr Clone Script 1.2.2 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the page parameter. Attackers can supply malicious SQL syntax in the page parameter to extract sensitive database information or modify database contents.

Ссылки

https://www.exploit-db.com/exploits/46637
Exploit
VDB Entry
https://www.vulncheck.com/advisories/fiverr-clone-script-sql-injection-via-page-parameter
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:phpscriptsmall:fiverr_clone_script:1.2.2:*:*:*:*:*:*:*

EPSS

Процентиль: 29%

0.00373

Низкий

9.1 Critical

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-fgjg-x2hx-m8rf

CVSS3: 8.2

github

4 месяца назад

Fiverr Clone Script 1.2.2 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the page parameter. Attackers can supply malicious SQL syntax in the page parameter to extract sensitive database information or modify database contents.

EPSS

Процентиль: 29%

0.00373

Низкий

9.1 Critical

CVSS3

Дефекты

CWE-89