Описание
PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, a SQL injection vulnerability in bug subscription deletion may allow attackers to inject SQL via a crafted email value. This issue has been patched in version 1.33.0.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.33.0 (исключая)
cpe:2.3:a:pear:pearweb:*:*:*:*:*:*:*:*
EPSS
Процентиль: 8%
0.00029
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-89
Связанные уязвимости
CVSS3: 9.8
ubuntu
4 дня назад
PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, a SQL injection vulnerability in bug subscription deletion may allow attackers to inject SQL via a crafted email value. This issue has been patched in version 1.33.0.
CVSS3: 9.8
debian
4 дня назад
PEAR is a framework and distribution system for reusable PHP component ...
EPSS
Процентиль: 8%
0.00029
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-89