A vulnerability classified as critical has been found in Fumon trello-octometric. This affects the function main of the file metrics-ui/server/srv.go. The manipulation of the argument num leads to sql injection. The patch is named a1f1754933fbf21e2221fbc671c81a47de6a04ef. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-217611.
References
Link | Resource |
---|---|
https://github.com/Fumon/trello-octometric/commit/a1f1754933fbf21e2221fbc671c81a47de6a04ef | Patch Third Party Advisory |
https://vuldb.com/?ctiid.217611 | Third Party Advisory |
https://vuldb.com/?id.217611 | Third Party Advisory |
Configurations
History
29 Feb 2024, 01:16
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
07 Nov 2023, 02:23
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-89 |
20 Oct 2023, 08:15
Type | Values Removed | Values Added |
---|---|---|
Summary | A vulnerability classified as critical has been found in Fumon trello-octometric. This affects the function main of the file metrics-ui/server/srv.go. The manipulation of the argument num leads to sql injection. The patch is named a1f1754933fbf21e2221fbc671c81a47de6a04ef. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-217611. | |
CWE |
12 Jan 2023, 17:52
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://vuldb.com/?ctiid.217611 - Third Party Advisory | |
References | (MISC) https://vuldb.com/?id.217611 - Third Party Advisory | |
References | (MISC) https://github.com/Fumon/trello-octometric/commit/a1f1754933fbf21e2221fbc671c81a47de6a04ef - Patch, Third Party Advisory | |
First Time |
Trello-octometric Project trello-octometric
Trello-octometric Project |
|
CPE | cpe:2.3:a:trello-octometric_project:trello-octometric:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
07 Jan 2023, 12:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-01-07 12:15
Updated : 2024-05-17 01:02
NVD link : CVE-2015-10023
Mitre link : CVE-2015-10023
CVE.ORG link : CVE-2015-10023
JSON object : View
Products Affected
trello-octometric_project
- trello-octometric
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')