Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
pointhi searx_stats cron.php sql injection
Vulnerability Description
A vulnerability, which was classified as critical, has been found in pointhi searx_stats. This issue affects some unknown processing of the file cgi/cron.php. The manipulation leads to sql injection. The patch is named 281bd679a4474ddb222d16c1c380f252839cc18f. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-218351.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
searx_stats SQL注入漏洞
Vulnerability Description
searx_stats是Thomas Pointhuber个人开发者的一个显示有关 searx 实例和 searx 引擎的当前统计信息的小网站。 searx_stats存在SQL注入漏洞,该漏洞源于文件 cgi/cron.php 的一些未知处理,操作导致 SQL注入。
CVSS Information
N/A
Vulnerability Type
N/A