9.9 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
55.9%
In ThinkPHP 5.1.24, the inner function delete can be used for SQL injection when its WHERE condition’s value can be controlled by a user’s request.
github.com/top-think/think/issues/858