Описание
Multiple SQL injection vulnerabilities in app/models/concerns/host_common.rb in Foreman before 1.2.3 allow remote attackers to execute arbitrary SQL commands via the (1) fqdn or (2) hostgroup parameter.
Multiple SQL injection vulnerabilities in app/models/concerns/host_common.rb in Foreman before 1.2.3 allow remote attackers to execute arbitrary SQL commands via the (1) fqdn or (2) hostgroup parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2013-4386
- https://access.redhat.com/errata/RHEA-2014:1175
- https://access.redhat.com/errata/RHSA-2013:1522
- https://access.redhat.com/security/cve/CVE-2013-4386
- https://bugzilla.redhat.com/show_bug.cgi?id=1013076
- https://groups.google.com/forum/#!topic/foreman-announce/GKMNXM66Z84
- https://groups.google.com/forum/#%21topic/foreman-announce/GKMNXM66Z84
- http://projects.theforeman.org/issues/3160
- http://rhn.redhat.com/errata/RHSA-2013-1522.html
Связанные уязвимости
Multiple SQL injection vulnerabilities in app/models/concerns/host_common.rb in Foreman before 1.2.3 allow remote attackers to execute arbitrary SQL commands via the (1) fqdn or (2) hostgroup parameter.
Multiple SQL injection vulnerabilities in app/models/concerns/host_common.rb in Foreman before 1.2.3 allow remote attackers to execute arbitrary SQL commands via the (1) fqdn or (2) hostgroup parameter.
Multiple SQL injection vulnerabilities in app/models/concerns/host_com ...