Lucene search
@huntrdevCVELIST:CVE-2021-3817HistoryDec 09, 2021 - 10:50 a.m.
CVE-2021-3817 SQL Injection in wbce/wbce_cms
2021-12-0910:50:10
CWE-89
@huntrdev
www.cve.org
5
wbce_cms
sql injection
cve-2021-3817
improper neutralization
special elements
sql command
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
10
Confidence
High
EPSS
0.068
Percentile
94.0%
wbce_cms is vulnerable to Improper Neutralization of Special Elements used in an SQL Command
CNA Affected
[
{
"product": "wbce/wbce_cms",
"vendor": "wbce",
"versions": [
{
"lessThan": "1.5.2",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2021-3817
2021-12-09 11:15:09
nvd
nvd
CVE-2021-3817
2021-12-09 11:15:09
exploitdb
exploitdb
WBCE CMS 1.5.1 - Admin Password Reset
2021-12-20 00:00:00
huntr
huntr
SQL Injection in wbce/wbce_cms
2021-11-27 19:15:38
prion
prion
Command injection
2021-12-09 11:15:00
osv
osv
CVE-2021-3817
2021-12-09 11:15:09
packetstorm
packetstorm
WBCE CMS 1.5.1 Admin Password Reset
2021-12-21 00:00:00
zdt
zdt
WBCE CMS 1.5.1 - Admin Password Reset Exploit
2021-12-20 00:00:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
10
Confidence
High
EPSS
0.068
Percentile
94.0%
Related for CVELIST:CVE-2021-3817