exploitDog

CVE-2022-24266

Опубликовано: 31 янв. 2022

Источник: nvd

CVSS3: 7.5

CVSS2: 7.8

EPSS Средний

Описание

Cuppa CMS v1.0 was discovered to contain a SQL injection vulnerability in /administrator/components/table_manager/ via the order_by parameter.

Ссылки

https://github.com/CuppaCMS/CuppaCMS/issues/17
Third Party Advisory
https://github.com/truonghuuphuc/CVE
Third Party Advisory
https://github.com/CuppaCMS/CuppaCMS/issues/17
Third Party Advisory
https://github.com/truonghuuphuc/CVE
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cuppacms:cuppacms:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 98%

0.59035

Средний

7.5 High

CVSS3

7.8 High

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-wqfj-fhm6-228j

github

около 4 лет назад

Cuppa CMS v1.0 was discovered to contain a SQL injection vulnerability in /administrator/components/table_manager/ via the order_by parameter.

EPSS

Процентиль: 98%

0.59035

Средний

7.5 High

CVSS3

7.8 High

CVSS2

Дефекты

CWE-89