Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
weblabyrinth labyrinth.inc.php Labyrinth sql injection
Vulnerability Description
A vulnerability classified as critical has been found in weblabyrinth 0.3.1. This affects the function Labyrinth of the file labyrinth.inc.php. The manipulation leads to sql injection. Upgrading to version 0.3.2 is able to address this issue. The identifier of the patch is 60793fd8c8c4759596d3510641e96ea40e7f60e9. It is recommended to upgrade the affected component. The identifier VDB-220221 was assigned to this vulnerability.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
WebLabyrinth SQL注入漏洞
Vulnerability Description
WebLabyrinth是Rafael Rotelok个人开发者的一个简单的工具。用于延迟和占领恶意扫描网站以检测事件处理程序的扫描仪,并在造成损害之前对其作出反应。 WebLabyrinth 0.3.1版本存在SQL注入漏洞,该漏洞源于文件labyrinth.inc.php的函数Labyrinth存在问题,攻击者利用该漏洞可以导致sql注入。
CVSS Information
N/A
Vulnerability Type
N/A