Описание
A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and consists of a SQL injection via update.php in the id parameter. Exploitation of this vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and retrieve all the information stored in the application.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:aatifaneeq:voovi:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 42%
0.00199
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS3
Дефекты
CWE-89
CWE-89
Связанные уязвимости
CVSS3: 9.8
github
около 2 лет назад
A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and consists of a SQL injection via update.php in the id parameter. Exploitation of this vulnerability could allow a remote attacker to send a specially crafted SQL query to the server and retrieve all the information stored in the application.
EPSS
Процентиль: 42%
0.00199
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS3
Дефекты
CWE-89
CWE-89