exploitDog

CVE-2025-61167

Опубликовано: 25 нояб. 2025

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

SIGB PMB v8.0.1.14 was discovered to contain multiple SQL injection vulnerabilities in the /opac_css/ajax_selector.php component via the id and datas parameters.

Ссылки

http://pmb.com
Not Applicable
http://sigb.com
Product
https://forge.sigb.net/projects/pmb/wiki/Changelog_801#S%C3%A9curit%C3%A9-2
Release Notes
https://gist.github.com/ZanyMonk/ed12e265f777152c33aeb806a644850e
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:sigb:pmb:8.0.1.14:*:*:*:*:*:*:*

EPSS

Процентиль: 11%

0.00036

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-97wp-pw3h-jfj6

CVSS3: 6.5

github

2 месяца назад

SIGB PMB v8.0.1.14 was discovered to contain multiple SQL injection vulnerabilities in the /opac_css/ajax_selector.php component via the id and datas parameters.

EPSS

Процентиль: 11%

0.00036

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-89