helloxz/imgurl is vulnerable to SQL Injection attacks. A attacker is able to send malicious script through the query
parameter in __construct()
to execute SQL queries on the target system via /upload/localhost.
CPE | Name | Operator | Version |
---|---|---|---|
helloxz/imgurl | eq | v2.31 | |
helloxz/imgurl | eq | v2.31 |