Описание
A SQL injection vulnerability was discovered in the PHPGurukul Dairy Farm Shop Management System 1.3. The vulnerability allows remote attackers to execute arbitrary SQL code via the category and categorycode parameters in a POST request to the manage-categories.php file.
Ссылки
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:phpgurukul:dairy_farm_shop_management_system:1.3:*:*:*:*:*:*:*
EPSS
Процентиль: 14%
0.00047
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-89
Связанные уязвимости
CVSS3: 5.4
github
8 месяцев назад
A SQL injection vulnerability was discovered in the PHPGurukul Dairy Farm Shop Management System 1.3. The vulnerability allows remote attackers to execute arbitrary SQL code via the category and categorycode parameters in a POST request to the manage-categories.php file.
EPSS
Процентиль: 14%
0.00047
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-89