CVE-2021-34249

Опубликовано: 24 фев. 2023

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

SQL injection vulnerability in sourcecodester online-book-store 1.0 allows remote attackers to view sensitive information via the id paremeter in application URL.

Ссылки

https://packetstormsecurity.com/files/159000/Online-Book-Store-1.0-SQL-Injection.html
Exploit
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/48775
Exploit
Third Party Advisory
VDB Entry
https://packetstormsecurity.com/files/159000/Online-Book-Store-1.0-SQL-Injection.html
Exploit
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/48775
Exploit
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:online_book_store_project:online_book_store:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 23%

0.00077

Низкий

7.5 High

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-94fx-vhqr-53xq