Описание
A vulnerability has been found in code-projects Simple Gym Management System up to 1.0. This affects an unknown part of the file /gym/func.php. Such manipulation of the argument Trainer_id/fname leads to sql injection. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.
Ссылки
EPSS
Процентиль: 2%
0.00014
Низкий
4.7 Medium
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-74
Связанные уязвимости
CVSS3: 4.7
github
18 дней назад
A vulnerability has been found in code-projects Simple Gym Management System up to 1.0. This affects an unknown part of the file /gym/func.php. Such manipulation of the argument Trainer_id/fname leads to sql injection. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.
EPSS
Процентиль: 2%
0.00014
Низкий
4.7 Medium
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-74