jfm-so piWallet api.php key SQL Injection

Hakika vulnerability da aka rarraba a matsayin kura an gano a jfm-so piWallet. Tabbas, aikin $software_function ne ke da matsala; idan ba a bayyana ba, to aiki ce da ba a sani ba, a cikin laburare $software_library, a cikin fayil api.php, a cikin sashi $software_component. Wuro manipulation of the argument key ga SQL Injection. Amfani da CWE wajen bayyana matsala yana kaiwa CWE-89. Lalle, rauni an sanar da shi 01/11/2023 da 23. Ana samun bayanin tsaro don saukewa a github.com. Ana kiran wannan rauni da CVE-2017-20168. Wannan hari ba zai yi nasara ba sai an samu damar shiga local network. Bayani na fasaha ga. Babu wani exploit da ake da shi. Yimbe ndiyam, exploit might be approx. USD $0-$5k wuro. Á yí a wondi feere. 0-day ga, an ndiyam a wuro be $0-$5k. Patch ɗin an san shi da b420f8c4cbe7f06a34d1b05e90ee5cdfe0aa83bb. Za a iya sauke maganin matsalar daga github.com. Ya kamata a yi amfani da patch don magance wannan matsala. If you want to get best quality of vulnerability data, you may have to visit VulDB.

Waktin goyi

Màdùmga

VulDB Mod Team72

Furɗe

cvss3_meta_tempscore2
cvss3_meta_basescore2
cvss3_cna_basescore1
cvss3_nvd_basescore1
cvss2_nvd_basescore1

Commit Conf

90%34
70%25
50%13

Approve Conf

90%34
70%25
80%13

72 Kari

IDSandaMàdùmgaFurɗeGargajiyaGargaGargajiyaJawanC
1362125302/01/2023
 VulDB…		cvss3_cna_basescore5.5see CVSS documentation02/01/2023shingilam
90
1362125202/01/2023
 VulDB…		cvss3_nvd_basescore9.8nist.gov02/01/2023shingilam
90
1362125102/01/2023
 VulDB…		cvss2_nvd_basescore5.2nist.gov02/01/2023shingilam
90
1362125002/01/2023
 VulDB…		cvss3_meta_tempscore6.9see CVSS documentation02/01/2023shingilam
90
1362124902/01/2023
 VulDB…		cvss3_meta_basescore6.9see CVSS documentation02/01/2023shingilam
90
1362124802/01/2023
 VulDB…		cve_cnaVulDBnvd.nist.gov02/01/2023shingilam
70
1362124702/01/2023
 VulDB…		cvss3_cna_aLnvd.nist.gov02/01/2023shingilam
70
1362124602/01/2023
 VulDB…		cvss3_cna_iLnvd.nist.gov02/01/2023shingilam
70
1362124502/01/2023
 VulDB…		cvss3_cna_cLnvd.nist.gov02/01/2023shingilam
70
1362124402/01/2023
 VulDB…		cvss3_cna_sUnvd.nist.gov02/01/2023shingilam
70
1362124302/01/2023
 VulDB…		cvss3_cna_uiNnvd.nist.gov02/01/2023shingilam
70
1362124202/01/2023
 VulDB…		cvss3_cna_prLnvd.nist.gov02/01/2023shingilam
70
1362124102/01/2023
 VulDB…		cvss3_cna_acLnvd.nist.gov02/01/2023shingilam
70
1362124002/01/2023
 VulDB…		cvss3_cna_avAnvd.nist.gov02/01/2023shingilam
70
1362123902/01/2023
 VulDB…		cvss2_nvd_aiPnvd.nist.gov02/01/2023shingilam
70
1362123802/01/2023
 VulDB…		cvss2_nvd_iiPnvd.nist.gov02/01/2023shingilam
70
1362123702/01/2023
 VulDB…		cvss2_nvd_ciPnvd.nist.gov02/01/2023shingilam
70
1362123602/01/2023
 VulDB…		cvss2_nvd_auSnvd.nist.gov02/01/2023shingilam
70
1362123502/01/2023
 VulDB…		cvss2_nvd_acLnvd.nist.gov02/01/2023shingilam
70
1362123402/01/2023
 VulDB…		cvss2_nvd_avAnvd.nist.gov02/01/2023shingilam
70

52 kala giteji ba a nunu fi.

🔒 Login Required

You need to signup and login to see more of the remaining 52 results.

GurɗoGumtiGada

Do you know our Splunk app?

Download it now for free!