exploitDog

CVE-2022-2801

Опубликовано: 12 авг. 2022

Источник: nvd

CVSS3: 6.3

CVSS3: 9.8

EPSS Низкий

Описание

A vulnerability, which was classified as critical, was found in SourceCodester Automated Beer Parlour Billing System. This affects an unknown part of the component Login. The manipulation of the argument username leads to sql injection. It is possible to initiate the attack remotely. The associated identifier of this vulnerability is VDB-206247.

Ссылки

https://vuldb.com/?id.206247
Third Party Advisory
VDB Entry
https://vuldb.com/?id.206247
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:automated_beer_parlour_billing_system_project:automated_beer_parlour_billing_system:-:*:*:*:*:*:*:*

EPSS

Процентиль: 54%

0.0031

Низкий

6.3 Medium

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-89

CWE-89

Связанные уязвимости

GHSA-mvpx-6xp2-66jp

CVSS3: 9.8

github

больше 3 лет назад

A vulnerability, which was classified as critical, was found in SourceCodester Automated Beer Parlour Billing System. This affects an unknown part of the component Login. The manipulation of the argument username leads to sql injection. It is possible to initiate the attack remotely. The associated identifier of this vulnerability is VDB-206247.

EPSS

Процентиль: 54%

0.0031

Низкий

6.3 Medium

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-89

CWE-89