vendor:
Nyron
by:
Miguel Santareno
8.8
CVSS
HIGH
SQL Injection
89
CWE
Product Name: Nyron
Affected Version From: < 1.0
Affected Version To: < 1.0
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested: Windows
2021
Nyron 1.0 – SQLi (Unauthenticated)
Unauthenticated user can exploit SQL Injection vulnerability in thes1 parameter.
Mitigation:
Input validation and sanitization should be implemented to prevent SQL injection attacks.