Описание
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NTN Information Technologies Online Services Software allows SQL Injection.This issue affects Online Services Software: before 1.17.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 1.17 (исключая)
cpe:2.3:a:online_services_project:online_services:*:*:*:*:*:*:*:*
EPSS
Процентиль: 34%
0.00135
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-89
CWE-89
Связанные уязвимости
CVSS3: 9.8
github
почти 3 года назад
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NTN Information Technologies Online Services Software allows SQL Injection.This issue affects Online Services Software: before 1.17.
EPSS
Процентиль: 34%
0.00135
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-89
CWE-89