Wellness
1 CVEs
product
Monthly
FredReinink Wellness-app before 2019-06-19 allows SQL injection, related to dietTrack.php, exerciseGenerator.php, fitnessTrack.php, and server.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
SQLi
PHP
Wellness
NVD
GitHub
CVSS 3.0
9.8
EPSS
1.4%
EPSS 1%
CVSS 9.8
CRITICAL
PATCH
Act Now
FredReinink Wellness-app before 2019-06-19 allows SQL injection, related to dietTrack.php, exerciseGenerator.php, fitnessTrack.php, and server.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
SQLi
PHP
Wellness
NVD
GitHub