CVE-2023-41594

Опубликовано: 08 сент. 2023

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

Dairy Farm Shop Management System Using PHP and MySQL v1.1 was discovered to contain multiple SQL injection vulnerabilities in the Login function via the Username and Password parameters.

Ссылки

https://github.com/MATRIXDEVIL/CVE/blob/main/CVE-2023-41594
Exploit
https://portswigger.net/web-security/sql-injection
Technical Description
https://www.acunetix.com/vulnerabilities/web/sql-injection/
Technical Description
https://github.com/MATRIXDEVIL/CVE/blob/main/CVE-2023-41594
Exploit
https://portswigger.net/web-security/sql-injection
Technical Description
https://www.acunetix.com/vulnerabilities/web/sql-injection/
Technical Description

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:phpgurukul:dairy_farm_shop_management_system:1.1:*:*:*:*:*:*:*

EPSS

Процентиль: 66%

0.00525

Низкий

7.5 High

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-v66q-9mpc-4j2g