Описание
Input from search query parameter in GOV CMS is not sanitized properly, leading to a Blind SQL injection vulnerability, which might be exploited by an unauthenticated remote attacker.
Versions 4.0 and above are not affected.
EPSS
Процентиль: 37%
0.00159
Низкий
Дефекты
CWE-89
Связанные уязвимости
github
5 месяцев назад
Input from search query parameter in GOV CMS is not sanitized properly, leading to a Blind SQL injection vulnerability, which might be exploited by an unauthenticated remote attacker. Versions 4.0 and above are not affected.
EPSS
Процентиль: 37%
0.00159
Низкий
Дефекты
CWE-89