In Jobberbase 2.0, the parameter category is not sanitized in public/page_subscribe.php, leading to /subscribe SQL injection.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.exploit-db.com/exploits/47314 | |
https://zerodays.lol/ |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2019-09-09T01:01:46
Updated: 2024-08-05T01:10:41.225Z
Reserved: 2019-09-08T00:00:00
Link: CVE-2019-16125
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2019-09-09T02:15:10.407
Modified: 2024-02-14T01:17:43.863
Link: CVE-2019-16125
Redhat
No data.