exploitDog

CVE-2022-31487

Опубликовано: 23 мая 2022

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

Inout Blockchain AltExchanger 1.2.1 and Inout Blockchain FiatExchanger 2.2.1 allow Chart/TradingView/chart_content/master.php symbol SQL injection.

Ссылки

https://github.com/bigb0x/CVEs/blob/main/Blockchain-AltExchanger-121-sqli.md
Exploit
Third Party Advisory
https://github.com/bigb0x/CVEs/blob/main/Inout-Blockchain-FiatExchanger-221-sqli.md
Exploit
Third Party Advisory
https://github.com/bigb0x/CVEs/blob/main/Blockchain-AltExchanger-121-sqli.md
Exploit
Third Party Advisory
https://github.com/bigb0x/CVEs/blob/main/Inout-Blockchain-FiatExchanger-221-sqli.md
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:inoutscripts:blockchain_altexchanger:1.2.1:*:*:*:*:*:*:*

cpe:2.3:a:inoutscripts:blockchain_fiatexchanger:2.2.1:*:*:*:*:*:*:*

EPSS

Процентиль: 55%

0.00325

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-2gvh-7c9c-xgq4

CVSS3: 7.5

github

больше 3 лет назад

Inout Blockchain AltExchanger 1.2.1 and Inout Blockchain FiatExchanger 2.2.1 allow Chart/TradingView/chart_content/master.php symbol SQL injection.

EPSS

Процентиль: 55%

0.00325

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-89