Vulnerability Details CVE-2022-31487
Inout Blockchain AltExchanger 1.2.1 and Inout Blockchain FiatExchanger 2.2.1 allow Chart/TradingView/chart_content/master.php symbol SQL injection.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 53.5%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- https://github.com/bigb0x/CVEs/blob/main/Blockchain-AltExchanger-121-sqli.md
- https://github.com/bigb0x/CVEs/blob/main/Inout-Blockchain-FiatExchanger-221-sqli.md
- https://github.com/bigb0x/CVEs/blob/main/Blockchain-AltExchanger-121-sqli.md
- https://github.com/bigb0x/CVEs/blob/main/Inout-Blockchain-FiatExchanger-221-sqli.md
Products affected by CVE-2022-31487
-
cpe:2.3:a:inoutscripts:blockchain_altexchanger:1.2.1
-
cpe:2.3:a:inoutscripts:blockchain_fiatexchanger:2.2.1