exploitDog

CVE-2022-2672

Опубликовано: 05 авг. 2022

Источник: nvd

CVSS3: 6.3

CVSS3: 8.8

EPSS Низкий

Описание

A vulnerability was found in SourceCodester Garage Management System. It has been classified as critical. Affected is an unknown function of the file createUser.php. The manipulation of the argument userName/uemail leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-205656.

Ссылки

https://vuldb.com/?id.205656
Third Party Advisory
https://vuldb.com/?id.205656
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:garage_management_system_project:garage_management_system:-:*:*:*:*:*:*:*

EPSS

Процентиль: 54%

0.0031

Низкий

6.3 Medium

CVSS3

8.8 High

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-qrg7-m54p-cr8c

CVSS3: 8.8

github

больше 3 лет назад

A vulnerability was found in SourceCodester Garage Management System. It has been classified as critical. Affected is an unknown function of the file createUser.php. The manipulation of the argument userName/uemail leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-205656.

EPSS

Процентиль: 54%

0.0031

Низкий

6.3 Medium

CVSS3

8.8 High

CVSS3

Дефекты

CWE-89