Описание
Fishing Reservation System 7.5 contains multiple remote SQL injection vulnerabilities in admin.php, cart.php, and calendar.php that allow attackers to inject malicious SQL commands. Attackers can exploit vulnerable parameters like uid, pid, type, m, y, and code to compromise the database management system and web application without user interaction.
EPSS
Процентиль: 7%
0.00026
Низкий
7.1 High
CVSS3
Дефекты
CWE-89
Связанные уязвимости
CVSS3: 7.1
github
4 дня назад
Fishing Reservation System 7.5 contains multiple remote SQL injection vulnerabilities in admin.php, cart.php, and calendar.php that allow attackers to inject malicious SQL commands. Attackers can exploit vulnerable parameters like uid, pid, type, m, y, and code to compromise the database management system and web application without user interaction.
EPSS
Процентиль: 7%
0.00026
Низкий
7.1 High
CVSS3
Дефекты
CWE-89