CVE Report for Damn Vulnerable Web Application (DVWA) (nvd.nist.gov)
from mike@postit.quantentoast.de to cybersecurity@infosec.pub on 21 Aug 2023 09:34
https://postit.quantentoast.de/post/45325

In case you need a quick laugh, have a look at this CVE report.

For context: quote DVWA Repo:

Damn Vulnerable Web Application (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goal is to be an aid for security professionals to test their skills and tools in a legal environment, […].

#cybersecurity

threaded - newest

Sysosmaster@infosec.pub on 21 Aug 2023 15:56 collapse

Saved you a click:

REJECTED CVE has been marked “REJECT” in the CVE List. These CVEs are stored in the NVD, but do not show up in search results.

faebudo@infosec.pub on 21 Aug 2023 20:13 collapse

Originally was:

“DVWA v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at blind\source\high.php.”

Source report: github.com/KLSEHB/…/Dvwa_vulnerability

mike@postit.quantentoast.de on 22 Aug 2023 06:22 collapse

I thought this would be visible with my link. Specifically shared the “show changes” Link but that doesn’t seem to work.