Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2016-5843

Опубликовано: 17 сент. 2016
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 9
CVSS3: 9.4

Описание

Multiple SQL injection vulnerabilities in the FAQ package 2.x before 2.3.6, 4.x before 4.0.5, and 5.x before 5.0.5 in Open Ticket Request System (OTRS) allow remote attackers to execute arbitrary SQL commands via crafted search parameters.

РелизСтатусПримечание
devel

not-affected

esm-apps/xenial

not-affected

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected]
precise

not-affected

code not present
trusty

not-affected

trusty/esm

DNE

trusty was not-affected
upstream

released

5.0.5, 4.0.5, 2.3.6
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

xenial

not-affected

Показывать по

Ссылки на источники

EPSS

Процентиль: 77%
0.0103
Низкий

9 Critical

CVSS2

9.4 Critical

CVSS3

Связанные уязвимости

nvd логотип

CVE-2016-5843

CVSS3: 9.4
nvd
больше 9 лет назад

Multiple SQL injection vulnerabilities in the FAQ package 2.x before 2.3.6, 4.x before 4.0.5, and 5.x before 5.0.5 in Open Ticket Request System (OTRS) allow remote attackers to execute arbitrary SQL commands via crafted search parameters.

github логотип

GHSA-9gq7-7qp9-2c82

CVSS3: 9.4
github
больше 3 лет назад

Multiple SQL injection vulnerabilities in the FAQ package 2.x before 2.3.6, 4.x before 4.0.5, and 5.x before 5.0.5 in Open Ticket Request System (OTRS) allow remote attackers to execute arbitrary SQL commands via crafted search parameters.

EPSS

Процентиль: 77%
0.0103
Низкий

9 Critical

CVSS2

9.4 Critical

CVSS3