Описание
SQL injection vulnerability in onethink v.1.1 allows a remote attacker to escalate privileges via a crafted script to the ModelModel.class.php component.
Ссылки
- ExploitThird Party Advisory
- Product
- ExploitIssue TrackingThird Party Advisory
- ExploitThird Party Advisory
- Product
- ExploitIssue TrackingThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:onethink:onethink:1.1:*:*:*:*:*:*:*
EPSS
Процентиль: 76%
0.00971
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-89
Связанные уязвимости
CVSS3: 9.8
github
почти 2 года назад
SQL injection vulnerability in onethink v.1.1 allows a remote attacker to escalate privileges via a crafted script to the ModelModel.class.php component.
EPSS
Процентиль: 76%
0.00971
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-89