Cookie Law
1 CVEs
product
Monthly
UpLight cookiebanner before 1.5.1 was discovered to contain a SQL injection vulnerability via the component Hook::getHookModuleExecList(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
SQLi
Cookie Law
NVD
CVSS 3.1
9.8
EPSS
0.5%
EPSS 1%
CVSS 9.8
CRITICAL
PATCH
Act Now
UpLight cookiebanner before 1.5.1 was discovered to contain a SQL injection vulnerability via the component Hook::getHookModuleExecList(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
SQLi
Cookie Law
NVD