Описание
SQL injection vulnerability was discovered in Courier Management System 1.0, which can be exploited via the ref_no (POST) parameter to admin_class.php
Ссылки
- ExploitThird Party AdvisoryVDB Entry
- ExploitThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:courier_management_system_project:courier_management_system:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 50%
0.00267
Низкий
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-89
Связанные уязвимости
github
больше 3 лет назад
SQL injection vulnerability was discovered in Courier Management System 1.0, which can be exploited via the ref_no (POST) parameter to admin_class.php
EPSS
Процентиль: 50%
0.00267
Низкий
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-89