Sql injection

2021-05-1020:15:00

PRIOn knowledge base

www.prio-n.com

8.9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.2%

JSON

An exploitable SQL injection vulnerability exists in ‘manageServiceStocks.jsp’ page of OpenClinic GA 5.173.3. A specially crafted HTTP request can lead to SQL injection. An attacker can make an authenticated HTTP request to trigger this vulnerability.

CPENameOperatorVersion
openclinic_gaeq5.173.3

CPE	Name	Operator	Version
	openclinic_ga	eq	5.173.3

References

talosintelligence.com/vulnerability_reports/TALOS-2020-1206