CVE-2015-10031

A vulnerability classified as critical was found in purpleparrots 491-Project. This vulnerability affects unknown code of the file update.php of the component Highscore Handler. The manipulation leads to sql injection. The name of the patch is a812a5e4cf72f2a635a716086fe1ee2b8fa0b1ab. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-217648.
Configurations

Configuration 1 (hide)

cpe:2.3:a:github:491-project:*:*:*:*:*:*:*:*

History

12 Jan 2023, 22:24

Type Values Removed Values Added
References (MISC) https://vuldb.com/?ctiid.217648 - (MISC) https://vuldb.com/?ctiid.217648 - Third Party Advisory
References (MISC) https://github.com/purpleparrots/491-Project/commit/a812a5e4cf72f2a635a716086fe1ee2b8fa0b1ab - (MISC) https://github.com/purpleparrots/491-Project/commit/a812a5e4cf72f2a635a716086fe1ee2b8fa0b1ab - Patch, Third Party Advisory
References (MISC) https://vuldb.com/?id.217648 - (MISC) https://vuldb.com/?id.217648 - Third Party Advisory
First Time Github 491-project
Github
CPE cpe:2.3:a:github:491-project:*:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8

08 Jan 2023, 17:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-01-08 17:15

Updated : 2024-03-21 02:24


NVD link : CVE-2015-10031

Mitre link : CVE-2015-10031

CVE.ORG link : CVE-2015-10031


JSON object : View

Products Affected

github

  • 491-project
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')