Sql injection

2021-07-1314:15:00

PRIOn knowledge base

www.prio-n.com

9.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.2%

JSON

An issue was discovered in Echo ShareCare 8.15.5. It does not perform authentication or authorization checks when accessing a subset of sensitive resources, leading to the ability for unauthenticated users to access pages that are vulnerable to attacks such as SQL injection.

CPENameOperatorVersion
sharecareeq8.15.5

CPE	Name	Operator	Version
	sharecare	eq	8.15.5

References

github.com/atredispartners/advisories/blob/master/ATREDIS-2021-0001.md