HelpDEZk 1.1.1 has SQL Injection in app\modules\admin\controllers\loginController.php via the admin/login/getWarningInfo/id/ PATH_INFO, related to the selectWarning function.
References
Link | Resource |
---|---|
https://github.com/M4ple/vulnerability/blob/master/helpdezk_sql/helpdezk_sql_injection.md | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:23:39
Updated: 2022-10-03T16:23:39
Reserved: 2022-10-03T00:00:00
Link: CVE-2017-14145
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-09-05T07:29:00.180
Modified: 2017-09-06T18:38:03.713
Link: CVE-2017-14145
JSON object: View
Redhat Information
No data.
CWE