Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
NethServer phonenehome index.php get_country_coor sql injection
Vulnerability Description
A vulnerability was found in NethServer phonenehome. It has been rated as critical. This issue affects the function get_info/get_country_coor of the file server/index.php. The manipulation leads to sql injection. The identifier of the patch is 759c30b0ddd7d493836bbdf695cf71624b377391. It is recommended to apply a patch to fix this issue. The identifier VDB-218393 was assigned to this vulnerability.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
NethServer nethserver-phonenehome SQL注入漏洞
Vulnerability Description
nethserver-phonenehome是NethServer开源的一个应用程序。用于跟踪全球所有 NethServer 的安装。 NethServer nethserver-phonenehome 存在SQL注入漏洞,该漏洞源于文件server/index.php的函数get_info/get_country_coor存在安全问题,导致SQL注入。
CVSS Information
N/A
Vulnerability Type
N/A