Sql injection

2022-11-1415:16:00

PRIOn knowledge base

www.prio-n.com

rukovoditel v3.2.1

sql injection

order_by parameter

nvd

0.001 Low

EPSS

Percentile

38.0%

JSON

Rukovoditel v3.2.1 was discovered to contain a SQL injection vulnerability via the order_by parameter at /rukovoditel/index.php?module=logs/view&type=php.

CPENameOperatorVersion
rukovoditeleq3.2.1

CPE	Name	Operator	Version
	rukovoditel	eq	3.2.1

References

github.com/Kubozz/rukovoditel-3.2.1/issues/2

0.001 Low

EPSS

Percentile

38.0%

JSON

Related for PRION:CVE-2022-43288