Описание
A SQL Injection vulnerability exists in Senayan Library Management System SLiMS 9 Bulian 9.6.1 via the tempLoanID parameter in the loan form on /admin/modules/circulation/loan.php.
Ссылки
- ExploitIssue TrackingThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:slims:senayan_library_management_system_bulian:9.6.1:*:*:*:*:*:*:*
EPSS
Процентиль: 35%
0.00143
Низкий
6.7 Medium
CVSS3
Дефекты
CWE-89
Связанные уязвимости
CVSS3: 6.7
github
около 1 года назад
A SQL Injection vulnerability exists in Senayan Library Management System SLiMS 9 Bulian 9.6.1 via the tempLoanID parameter in the loan form on /admin/modules/circulation/loan.php.
EPSS
Процентиль: 35%
0.00143
Низкий
6.7 Medium
CVSS3
Дефекты
CWE-89