Описание
A time-based blind SQL injection vulnerability was identified in the PHPGurukul Dairy Farm Shop Management System 1.3. The vulnerability exists in the manage-companies.php file and allows remote attackers to execute arbitrary SQL code via the companyname parameter in a POST request.
Ссылки
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:phpgurukul:dairy_farm_shop_management_system:1.3:*:*:*:*:*:*:*
EPSS
Процентиль: 29%
0.00103
Низкий
8 High
CVSS3
Дефекты
CWE-89
Связанные уязвимости
CVSS3: 8
github
8 месяцев назад
A time-based blind SQL injection vulnerability was identified in the PHPGurukul Dairy Farm Shop Management System 1.3. The vulnerability exists in the manage-companies.php file and allows remote attackers to execute arbitrary SQL code via the companyname parameter in a POST request.
EPSS
Процентиль: 29%
0.00103
Низкий
8 High
CVSS3
Дефекты
CWE-89