Описание
Organization Portal System developed by WellChoose has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до IFTOP_P3_2_1_197 (исключая)
cpe:2.3:a:wellchoose:organization_portal_system:*:*:*:*:*:*:*:*
EPSS
Процентиль: 17%
0.00053
Низкий
6.5 Medium
CVSS3
7.5 High
CVSS3
Дефекты
CWE-89
Связанные уязвимости
CVSS3: 6.5
github
6 месяцев назад
Organization Portal System developed by WellChoose has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents.
EPSS
Процентиль: 17%
0.00053
Низкий
6.5 Medium
CVSS3
7.5 High
CVSS3
Дефекты
CWE-89