Описание
PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, a SQL injection vulnerability in apidoc queue insertion can allow query manipulation if an attacker can influence the inserted filename value. This issue has been patched in version 1.33.0.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.33.0 (исключая)
cpe:2.3:a:pear:pearweb:*:*:*:*:*:*:*:*
EPSS
Процентиль: 9%
0.00031
Низкий
7.5 High
CVSS3
Дефекты
CWE-89
Связанные уязвимости
CVSS3: 7.5
ubuntu
4 дня назад
PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, a SQL injection vulnerability in apidoc queue insertion can allow query manipulation if an attacker can influence the inserted filename value. This issue has been patched in version 1.33.0.
CVSS3: 7.5
debian
4 дня назад
PEAR is a framework and distribution system for reusable PHP component ...
EPSS
Процентиль: 9%
0.00031
Низкий
7.5 High
CVSS3
Дефекты
CWE-89