exploitDog

CVE-2020-5515

Опубликовано: 06 янв. 2020

Источник: nvd

CVSS3: 7.2

CVSS2: 6.5

EPSS Средний

Описание

Gila CMS 1.11.8 allows /admin/sql?query= SQL Injection.

Ссылки

http://packetstormsecurity.com/files/158114/Gila-CMS-1.11.8-SQL-Injection.html
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/158140/Gila-CMS-1.1.18.1-SQL-Injection-Shell-Upload.html
Exploit
Third Party Advisory
VDB Entry
https://infosecdb.wordpress.com/2020/01/05/gilacms-1-11-8-admin-sqlquery-sql-injection/
Exploit
Third Party Advisory
http://packetstormsecurity.com/files/158114/Gila-CMS-1.11.8-SQL-Injection.html
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/158140/Gila-CMS-1.1.18.1-SQL-Injection-Shell-Upload.html
Exploit
Third Party Advisory
VDB Entry
https://infosecdb.wordpress.com/2020/01/05/gilacms-1-11-8-admin-sqlquery-sql-injection/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:gilacms:gila_cms:1.11.8:*:*:*:*:*:*:*

EPSS

Процентиль: 98%

0.63344

Средний

7.2 High

CVSS3

6.5 Medium

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-322g-3p44-gp9p

CVSS3: 7.2

github

больше 3 лет назад

Gila CMS 1.11.8 allows /admin/sql?query= SQL Injection.

EPSS

Процентиль: 98%

0.63344

Средний

7.2 High

CVSS3

6.5 Medium

CVSS2

Дефекты

CWE-89