exploitDog

CVE-2023-43739

Опубликовано: 28 сент. 2023

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

The 'bookisbn' parameter of the cart.php resource

does not validate the characters received and they

are sent unfiltered to the database.

Ссылки

https://fluidattacks.com/advisories/filth
Exploit
Third Party Advisory
https://projectworlds.in/
Product
https://fluidattacks.com/advisories/filth
Exploit
Third Party Advisory
https://projectworlds.in/
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:online_book_store_project_project:online_book_store_project:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 44%

0.00218

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-89

CWE-89

Связанные уязвимости

GHSA-44fv-mcq3-v66f

CVSS3: 9.8

github

больше 2 лет назад

The 'bookisbn' parameter of the cart.php resource does not validate the characters received and they are sent unfiltered to the database.

EPSS

Процентиль: 44%

0.00218

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-89

CWE-89