Magicbug: >> Cloudlog Security Vulnerabilities
Cloudlog 2.6.15 allows Oqrs.php request_form SQL injection via station_id or callsign.
CVSS Score
7.3
EPSS Score
0.001
Published
2024-10-14
Cloudlog 2.6.15 allows Oqrs.php delete_oqrs_line id SQL injection.
CVSS Score
9.8
EPSS Score
0.001
Published
2024-10-14
Cloudlog 2.6.15 allows Oqrs.php get_station_info station_id SQL injection.
CVSS Score
9.8
EPSS Score
0.001
Published
2024-10-14
A SQL Injection vulnerability was discovered in Cloudlog 2.6.15, specifically within the get_station_info()function located in the file /application/models/Oqrs_model.php. The vulnerability is exploitable via the station_id parameter.
CVSS Score
9.8
EPSS Score
0.001
Published
2024-10-01