Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 7:38 p.m.11 views

CVE-2021-3025

Invision Community IPS Community Suite before 4.5.4.2 allows SQL Injection via the Downloads REST API the sortDir parameter in a sortBy=popular action to the GETindex method in applications/downloads/api/files.php...

8.8CVSS8.1AI score0.01407EPSS
Exploits2References1
NVD
NVD
added 2021/01/08 7:15 a.m.13 views

CVE-2021-3025

Invision Community IPS Community Suite before 4.5.4.2 allows SQL Injection via the Downloads REST API the sortDir parameter in a sortBy=popular action to the GETindex method in applications/downloads/api/files.php...

8.8CVSS9.1AI score0.01407EPSS
Exploits2References2
Prion
Prion
added 2021/01/08 7:15 a.m.23 views

Sql injection

Invision Community IPS Community Suite before 4.5.4.2 allows SQL Injection via the Downloads REST API the sortDir parameter in a sortBy=popular action to the GETindex method in applications/downloads/api/files.php...

6.5CVSS9AI score0.01407EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2021/01/08 6:21 a.m.37 views

CVE-2021-3025

Invision Community IPS Community Suite before 4.5.4.2 allows SQL Injection via the Downloads REST API the sortDir parameter in a sortBy=popular action to the GETindex method in applications/downloads/api/files.php...

9.3AI score0.01407EPSS
Exploits2References2
CVE
CVE
added 2021/01/08 6:21 a.m.103 views

CVE-2021-3025

Summary: CVE-2021-3025 affects Invision Community IPS Community Suite up to version 4.5.4.2. The vulnerability is an SQL Injection in the Downloads REST API, triggered by the sortDir parameter via sortBy=popular in the GETindex() method of /applications/downloads/api/files.php. The issue could al...

8.8CVSS9AI score0.01407EPSS
Exploits2References2Affected Software1
Packet Storm
Packet Storm
added 2021/01/06 12:0 a.m.877 views

IPS Community Suite 4.5.4 SQL Injection

----------------------------------------------------------------------------- IPS Community Suite sortBy == 'popular' 56. 57. \IPS\Request::i-sortDir = \IPS\Request::i-sortDir ?: 'ASC'; 58. $sortBy = 'filerating ' . \IPS\Request::i-sortDir . ', filereviews'; 59. $where = array array 'filerating?'...

0.1AI score0.01407EPSS
Exploits2
Rows per page
Query Builder