Описание
Explorance Blue versions prior to 8.14.9 contain a SQL injection vulnerability caused by insufficient validation of user input in a web application endpoint. An attacker can supply crafted input that is executed as part of backend database queries. The issue is exploitable without authentication, significantly raising the risk.
EPSS
Процентиль: 36%
0.00154
Низкий
10 Critical
CVSS3
Дефекты
CWE-89
Связанные уязвимости
CVSS3: 10
github
10 дней назад
Explorance Blue versions prior to 8.14.9 contain a SQL injection vulnerability caused by insufficient validation of user input in a web application endpoint. An attacker can supply crafted input that is executed as part of backend database queries. The issue is exploitable without authentication, significantly raising the risk.
EPSS
Процентиль: 36%
0.00154
Низкий
10 Critical
CVSS3
Дефекты
CWE-89