Описание
SOPlanning 1.45 is vulnerable to authenticated SQL Injection that leads to command execution via the users parameter, as demonstrated by export_ical.php.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:soplanning:soplanning:1.45:*:*:*:*:*:*:*
EPSS
Процентиль: 63%
0.00452
Низкий
7.2 High
CVSS3
9 Critical
CVSS2
Дефекты
CWE-89
Связанные уязвимости
github
больше 3 лет назад
SOPlanning 1.45 is vulnerable to authenticated SQL Injection that leads to command execution via the users parameter, as demonstrated by export_ical.php.
EPSS
Процентиль: 63%
0.00452
Низкий
7.2 High
CVSS3
9 Critical
CVSS2
Дефекты
CWE-89