Описание
Orca HCM from Learning Digital has a SQL Injection vulnerability, allowing attackers with regular privileges to inject arbitrary SQL commands to read, modify, and delete database contents.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 11.0 (исключая)
cpe:2.3:a:learningdigital:orca_hcm:*:*:*:*:*:*:*:*
EPSS
Процентиль: 31%
0.0012
Низкий
8.8 High
CVSS3
Дефекты
CWE-89
Связанные уязвимости
CVSS3: 8.8
github
12 месяцев назад
Orca HCM from Learning Digital has a SQL Injection vulnerability, allowing attackers with regular privileges to inject arbitrary SQL commands to read, modify, and delete database contents.
EPSS
Процентиль: 31%
0.0012
Низкий
8.8 High
CVSS3
Дефекты
CWE-89