Описание
A SQL Injection vulnerability was found in /admin/add-propertytype.php in PHPGurukul Land Record System Project in PHP v1.0 allows remote attackers to execute arbitrary code via the propertytype POST request parameter.
Ссылки
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:phpgurukul:land_record_system:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 47%
0.00243
Низкий
5.5 Medium
CVSS3
Дефекты
CWE-89
Связанные уязвимости
CVSS3: 5.5
github
12 месяцев назад
A SQL Injection vulnerability was found in /admin/add-propertytype.php in PHPGurukul Land Record System Project in PHP v1.0 allows remote attackers to execute arbitrary code via the propertytype POST request parameter.
EPSS
Процентиль: 47%
0.00243
Низкий
5.5 Medium
CVSS3
Дефекты
CWE-89