74cmsSE 3.5.1 /freelance/resume_list key sql injection

A vulnerability classified as critical was found in 74cmsSE 3.5.1. Affected by this vulnerability is some unknown processing of the file /freelance/resume_list. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

020
118

Field

exploit_price_0day1
vulnerability_cvss3_meta_tempscore1
vulnerability_cvss3_meta_basescore1
vulnerability_cvss3_vuldb_tempscore1
vulnerability_cvss3_vuldb_basescore1

Commit Conf

90%26
50%12

Approve Conf

90%26
80%12
IDCommitedUserFieldChangeRemarksAcceptedReasonC
1264329906/23/2022VulD...price_0day$0-$5ksee exploit price documentation06/23/2022accepted
90
1264329806/23/2022VulD...cvss3_meta_tempscore5.3see CVSS documentation06/23/2022accepted
90
1264329706/23/2022VulD...cvss3_meta_basescore5.5see CVSS documentation06/23/2022accepted
90
1264329606/23/2022VulD...cvss3_vuldb_tempscore5.3see CVSS documentation06/23/2022accepted
90
1264329506/23/2022VulD...cvss3_vuldb_basescore5.5see CVSS documentation06/23/2022accepted
90
1264329406/23/2022VulD...cvss2_vuldb_tempscore4.9see CVSS documentation06/23/2022accepted
90
1264329306/23/2022VulD...cvss2_vuldb_basescore5.2see CVSS documentation06/23/2022accepted
90
1264329206/23/2022VulD...cvss3_vuldb_rlXderived from historical data06/23/2022accepted
80
1264329106/23/2022VulD...cvss3_vuldb_eXderived from historical data06/23/2022accepted
80
1264329006/23/2022VulD...cvss3_vuldb_prLderived from historical data06/23/2022accepted
80
1264328906/23/2022VulD...cvss2_vuldb_rlNDderived from historical data06/23/2022accepted
80
1264328806/23/2022VulD...cvss2_vuldb_eNDderived from historical data06/23/2022accepted
80
1264328706/23/2022VulD...cvss2_vuldb_auSderived from historical data06/23/2022accepted
80
1264328606/23/2022VulD...cvss2_vuldb_rcURderived from vuldb v3 vector06/23/2022accepted
80
1264328506/23/2022VulD...cvss2_vuldb_aiPderived from vuldb v3 vector06/23/2022accepted
80
1264328406/23/2022VulD...cvss2_vuldb_iiPderived from vuldb v3 vector06/23/2022accepted
80
1264328306/23/2022VulD...cvss2_vuldb_ciPderived from vuldb v3 vector06/23/2022accepted
80
1264328206/23/2022VulD...cvss2_vuldb_acLderived from vuldb v3 vector06/23/2022accepted
80
1264328106/23/2022VulD...cvss2_vuldb_avAderived from vuldb v3 vector06/23/2022accepted
80
1264328006/23/2022VulD...date1655935200 (06/23/2022)06/23/2022accepted
90

18 more entries are not shown

Do you want to use VulDB in your project?

Use the official API to access entries easily!