Описание
SQL injection vulnerability in the DRED virtual campus platform. This vulnerability allows an attacker to retrieve, create, update, and delete data from the database by sending a POST request using the ‘buscame’ parameter in ‘/catalogo_c/catalogo.php’.
EPSS
Процентиль: 14%
0.00045
Низкий
Дефекты
CWE-89
Связанные уязвимости
github
3 месяца назад
SQL injection vulnerability in the DRED virtual campus platform. This vulnerability allows an attacker to retrieve, create, update, and delete data from the database by sending a POST request using the ‘buscame’ parameter in ‘/catalogo_c/catalogo.php’.
EPSS
Процентиль: 14%
0.00045
Низкий
Дефекты
CWE-89