Количество 2
Количество 2
CVE-2021-47763
Aimeos 2021.10 LTS contains a SQL injection vulnerability in the json api 'sort' parameter that allows attackers to inject malicious database queries. Attackers can manipulate the sort parameter to reveal table and column names by sending crafted GET requests to the jsonapi/review endpoint.
GHSA-hm9j-cgmm-2w36
Aimeos contains a SQL injection vulnerability in the json api 'sort' parameter
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-47763 Aimeos 2021.10 LTS contains a SQL injection vulnerability in the json api 'sort' parameter that allows attackers to inject malicious database queries. Attackers can manipulate the sort parameter to reveal table and column names by sending crafted GET requests to the jsonapi/review endpoint. | CVSS3: 8.2 | 0% Низкий | 24 дня назад |
| GHSA-hm9j-cgmm-2w36 Aimeos contains a SQL injection vulnerability in the json api 'sort' parameter | CVSS3: 8.2 | 0% Низкий | 24 дня назад |
Уязвимостей на страницу