Описание
A vulnerability was found in code-projects Online Class and Exam Scheduling System 1.0 in /Scheduling/pages/profile_update.php. Manipulating the parameter username will cause SQL injection attacks.
Ссылки
- ExploitIssue TrackingThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:code-projects:online_class_and_exam_scheduling_system:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 19%
0.00059
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-89
Связанные уязвимости
CVSS3: 6.5
github
10 месяцев назад
A vulnerability was found in code-projects Online Class and Exam Scheduling System 1.0 in /Scheduling/pages/profile_update.php. Manipulating the parameter username will cause SQL injection attacks.
EPSS
Процентиль: 19%
0.00059
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-89