Sql injection

2020-03-1317:15:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.4%

JSON

A Blind SQL Injection issue was discovered in Sapplica Sentrifugo 3.2 via the index.php/holidaygroups/add id parameter because of the HolidaydatesController.php addAction function.

CPENameOperatorVersion
sentrifugoeq3.2

CPE	Name	Operator	Version
	sentrifugo	eq	3.2

References

github.com/sapplica/sentrifugo/commits/master

www.exploit-db.com/exploits/48179