CVE-2013-6872

Опубликовано: 21 янв. 2014

Источник: debian

Описание

SQL injection vulnerability in managetimetracker.php in Collabtive before 1.2 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a projectpdf action.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
collabtive	fixed	1.2-1		package
collabtive	no-dsa		wheezy	package

Связанные уязвимости

CVE-2013-6872

ubuntu

около 12 лет назад

SQL injection vulnerability in managetimetracker.php in Collabtive before 1.2 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a projectpdf action.

CVE-2013-6872

nvd

около 12 лет назад

SQL injection vulnerability in managetimetracker.php in Collabtive before 1.2 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a projectpdf action.

GHSA-jj26-p49h-743v

github

больше 3 лет назад

SQL injection vulnerability in managetimetracker.php in Collabtive before 1.2 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a projectpdf action.