Sql injection

2020-09-3021:15:00

PRIOn knowledge base

www.prio-n.com

9.8 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.1%

RainbowFish PacsOne Server 6.8.4 allows SQL injection on the username parameter in the signup page.

CPENameOperatorVersion
pacsone_servereq6.8.4

CPE	Name	Operator	Version
	pacsone_server	eq	6.8.4

References

github.com/bzyo/cve-pocs/tree/master/CVE-2020-12870

www.pacsone.net/download.htm