daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update and rename cves/2020/CVE-2020-22210.yaml to vulnerabilities/other/74cms-sqli.yaml

patch-1
Ritik Chaddha 2022-06-05 15:04:44 +05:30 committed by GitHub
parent 2b8d79ede7
commit 914aa45704
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 5 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
cves/2020/CVE-2020-22210.yaml → vulnerabilities/other/74cms-sqli.yaml
View File

@ -1,19 +1,18 @@
id: CVE-2020-22210 id: 74cms-sqli
info: info:
name: 74cms Sql Injection name: 74cms Sql Injection
author: princechaddha author: princechaddha
severity: critical severity: critical
description: A SQL injection vulnerability exists in 74cms 3.2.0 via the x parameter to ajax_officebuilding.php. description: A SQL injection vulnerability exists in 74cms 5.0.1 AjaxPersonalController.class.php.
reference: reference:
- https://nvd.nist.gov/vuln/detail/CVE-2020-22210 - https://github.com/possib1e/vuln/issues/3
- https://github.com/blindkey/cve_like/issues/11
classification: classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8 cvss-score: 9.8
cve-id: CVE-2020-22210 cve-id: CVE-2020-22210
cwe-id: CWE-89 cwe-id: CWE-89
tags: cve,cve2020,74cms,sqli tags: 74cms,sqli
requests: requests:
- method: GET - method: GET
@ -27,3 +26,4 @@ requests:
part: body part: body
# Enhanced by mp on 2022/03/02 # Enhanced by mp on 2022/03/02
# Enhanced by ritikchaddha on 2022/05/05