PT-2017-14341 · Unknown · Cpa Lead Reward Script

Ihsan Sencan

·

Publicado

2017-10-31

·

Atualizado

2017-11-18

·

CVE-2017-15986

CVSS v2.0

7.5

Alta

VetorAV:N/AC:L/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions CPA Lead Reward Script (affected versions not specified)
Description The issue allows SQL Injection via the username parameter.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

SQL injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-89

Identificadores relacionados

CVE-2017-15986

Produtos afetados

Cpa Lead Reward Script