Описание
While editing pages managed by MegaBIP a user with high privileges is prompted to give a reasoning for performing this action. Input provided by the the user is not sanitized, leading to SQL Injection vulnerability. Version 5.20 of MegaBIP fixes this issue.
EPSS
Процентиль: 13%
0.00044
Низкий
Дефекты
CWE-89
Связанные уязвимости
github
9 месяцев назад
While editing pages managed by MegaBIP a user with high privileges is prompted to give a reasoning for performing this action. Input provided by the the user is not sanitized, leading to SQL Injection vulnerability. Version 5.20 of MegaBIP fixes this issue.
EPSS
Процентиль: 13%
0.00044
Низкий
Дефекты
CWE-89