Описание
Multiple SQL injection vulnerabilities in Sysphonic Thetis before 2.3.0 allow remote attackers to execute arbitrary SQL commands via unspecified vectors.
Multiple SQL injection vulnerabilities in Sysphonic Thetis before 2.3.0 allow remote attackers to execute arbitrary SQL commands via unspecified vectors.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2015-2972
- https://github.com/sysphonic/thetis/commit/1b8234706e1294f41df42f3d1ccb71b983ffbe23
- https://github.com/sysphonic/thetis/commit/4ca3f5f486759660b87d7c146f1fdc11264f56eb
- https://github.com/sysphonic/thetis/commit/8004ee0c384daae0b28478ff8193d1990c397f57
- https://github.com/sysphonic/thetis/commit/842e44f0c2bd7d680430bb89a3bb78fd744961f9
- https://github.com/sysphonic/thetis/commit/a61dc72035c7ae0b06f6d7dc8b2a848ffc7db277
- https://github.com/sysphonic/thetis/commit/c07e255d2296d50a0bffafaf66a76f8f1b53621f
- https://github.com/sysphonic/thetis/commit/ce535a38ec92ff0f98af11ab41a425d1529a31ef
- https://github.com/sysphonic/thetis/commit/d9ed965075634ca1a095b480b459c68445ce951d
- http://jvn.jp/en/jp/JVN19011483/index.html
- http://jvndb.jvn.jp/jvndb/JVNDB-2015-000099
- http://sysphonic.com/en/thetis/THETIS-SEC-001.html
Связанные уязвимости
nvd
больше 10 лет назад
Multiple SQL injection vulnerabilities in Sysphonic Thetis before 2.3.0 allow remote attackers to execute arbitrary SQL commands via unspecified vectors.