CVE-2021-39165P3MEDIUMCVSS 6.5PoCfixed in 2.3.182021-08-26
CVE-2021-39165 [MEDIUM] CWE-89 CVE-2021-39165: Cachet is an open source status page. With Cachet prior to and including 2.3.18, there is a SQL inje
Cachet is an open source status page. With Cachet prior to and including 2.3.18, there is a SQL injection which is in the `SearchableTrait#scopeSearch()`. Attackers without authentication can utilize this vulnerability to exfiltrate sensitive data from the database such as administrator's password and session. The original repository of Cachet is not
nvd