Описание
A vulnerability was found in PHPGurukul Zoo Management System 2.1 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/normal-search.php. The manipulation of the argument searchdata leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-266270 is the identifier assigned to this vulnerability.
Ссылки
- Permissions RequiredVDB Entry
- Permissions RequiredVDB Entry
- Third Party AdvisoryVDB Entry
- URL Repurposed
- Permissions RequiredVDB Entry
- Permissions RequiredVDB Entry
- Third Party AdvisoryVDB Entry
- URL Repurposed
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:phpgurukul:zoo_management_system:2.1:*:*:*:*:*:*:*
EPSS
Процентиль: 27%
0.00096
Низкий
6.3 Medium
CVSS3
9.8 Critical
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-89
EPSS
Процентиль: 27%
0.00096
Низкий
6.3 Medium
CVSS3
9.8 Critical
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-89