Описание
A SQL injection vulnerability in /oa.php?c=Staff&a=read of Find a Place LJCMS v 1.3 allows attackers to access sensitive database information via a crafted POST request.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:find_a_place_ljcms_project:find_a_place_ljcms:1.3:*:*:*:*:*:*:*
EPSS
Процентиль: 50%
0.00264
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-89
Связанные уязвимости
github
около 3 лет назад
A SQL injection vulnerability in /oa.php?c=Staff&a=read of Find a Place LJCMS v 1.3 allows attackers to access sensitive database information via a crafted POST request.
EPSS
Процентиль: 50%
0.00264
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-89