Lucene search

MitreCVE-2021-31233

HistoryMay 31, 2023 - 1:15 a.m.

CVE-2021-31233

2023-05-3101:15:42

CWE-89

mitre

web.nvd.nist.gov

cve-2021-31233

sql injection

fighting cock information system

nvd

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

7.6

Confidence

High

EPSS

0.001

Percentile

42.2%

JSON

SQL Injection vulnerability found in Fighting Cock Information System v.1.0 allows a remote attacker to obtain sensitive information via the edit_breed.php parameter.

Affected configurations

Nvd

Node

fighting_cock_information_system_projectfighting_cock_information_systemMatch1.0

VendorProductVersionCPE
fighting_cock_information_system_projectfighting_cock_information_system1.0cpe:2.3:a:fighting_cock_information_system_project:fighting_cock_information_system:1.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
fighting_cock_information_system_project	fighting_cock_information_system	1.0	cpe:2.3:a:fighting_cock_information_system_project:fighting_cock_information_system:1.0:::::::*

References

github.com/gabesolomon/CVE-2021-31233

www.sourcecodester.com/php/12824/fighting-cock-information-system.html

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

7.6

Confidence

High

EPSS

0.001

Percentile

42.2%

JSON

Related for CVE-2021-31233