itsourcecode Tailoring Management System 1.0 orderadd.php ଗ୍ରାହକ SQL ଇଞ୍ଜେକ୍ସନ
Rakkoon nageenyaa kan ଜଟିଳ jedhamuun beekamu itsourcecode Tailoring Management System 1.0 keessatti argameera. Miidhaan irra gahe is hojii hin beekamne faayilii orderadd.php keessa. Dhugumatti jijjiirraa irratti raawwatame ଗ୍ରାହକ gara SQL ଇଞ୍ଜେକ୍ସନ geessa. Waliigalteewwan CWE fayyadamuun rakkoo ibsuun gara CWE-89 si geessa. Beekumsi kun yeroo 06/20/2024 ifoomsifameera. Odeeffannoon kun buufachuuf github.com irratti dhiyaateera. Dogoggorri kun maqaa CVE-2024-6195 jedhuun tajaajilama. Weerara fageenya irraa jalqabuun ni danda'ama. Odeeffannoon teeknikaa ni argama. Akka dabalataan, meeshaa balaa kana fayyadamuuf argama. Qorannoo miidhaa (exploit) beeksifamee jira, namoonni itti fayyadamuu danda'u. Yeroo ammaa, gatii exploit might be approx. USD $0-$5k beekamuu danda'a. ପ୍ରୁଫ୍-ଅଫ୍-କନ୍ସେପ୍ଟ jedhamee murtaa’eera. Exploit kana github.com irraa buufachuu ni dandeessa. Waggaa 0-day ta'ee, gatiin isaa daldala dhoksaa keessatti $0-$5k jedhamee tilmaamame. Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
1 ଆଡାପ୍ଟେସନ୍ · 55 ପଏଣ୍ଟ
| ଫିଲ୍ଡ | ସୃଷ୍ଟି ହୋଇଛି 06/20/2024 08:11 AM |
|---|---|
| software_vendor | itsourcecode |
| software_name | Tailoring Management System |
| software_version | 1.0 |
| software_file | orderadd.php |
| software_argument | customer |
| vulnerability_cwe | CWE-89 (SQL ଇଞ୍ଜେକ୍ସନ) |
| vulnerability_risk | 2 |
| cvss3_vuldb_av | N |
| cvss3_vuldb_ac | L |
| cvss3_vuldb_ui | N |
| cvss3_vuldb_s | U |
| cvss3_vuldb_c | L |
| cvss3_vuldb_i | L |
| cvss3_vuldb_a | L |
| cvss3_vuldb_e | P |
| cvss3_vuldb_rc | R |
| advisory_url | https://github.com/2768210355/cve/issues/2 |
| exploit_availability | 1 |
| exploit_publicity | 1 |
| exploit_url | https://github.com/2768210355/cve/issues/2 |
| source_cve | CVE-2024-6195 |
| cna_responsible | VulDB |
| cvss2_vuldb_av | N |
| cvss2_vuldb_ac | L |
| cvss2_vuldb_ci | P |
| cvss2_vuldb_ii | P |
| cvss2_vuldb_ai | P |
| cvss2_vuldb_e | POC |
| cvss2_vuldb_rc | UR |
| cvss4_vuldb_av | N |
| cvss4_vuldb_ac | L |
| cvss4_vuldb_ui | N |
| cvss4_vuldb_vc | L |
| cvss4_vuldb_vi | L |
| cvss4_vuldb_va | L |
| cvss4_vuldb_e | P |
| cvss2_vuldb_au | S |
| cvss2_vuldb_rl | ND |
| cvss3_vuldb_pr | L |
| cvss3_vuldb_rl | X |
| cvss4_vuldb_at | N |
| cvss4_vuldb_pr | L |
| cvss4_vuldb_sc | N |
| cvss4_vuldb_si | N |
| cvss4_vuldb_sa | N |
| cvss2_vuldb_basescore | 6.5 |
| cvss2_vuldb_tempscore | 5.6 |
| cvss3_vuldb_basescore | 6.3 |
| cvss3_vuldb_tempscore | 5.7 |
| cvss3_meta_basescore | 6.3 |
| cvss3_meta_tempscore | 5.7 |
| cvss4_vuldb_bscore | 5.3 |
| cvss4_vuldb_btscore | 2.1 |
| advisory_date | 1718834400 (06/20/2024) |
| price_0day | $0-$5k |