← Volver a CVEs
CVE-2015-10046
MEDIUM5.5
Descripcion
A vulnerability has been found in lolfeedback and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to sql injection. The identifier of the patch is 6cf0b5f2228cd8765f734badd37910051000f2b2. It is recommended to apply a patch to fix this issue. The identifier VDB-218353 was assigned to this vulnerability.
Detalles CVE
Puntuacion CVSS v3.15.5
SeveridadMEDIUM
Vector CVSSCVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vector de ataqueADJACENT_NETWORK
ComplejidadLOW
Privilegios requeridosLOW
Interaccion usuarioNONE
Publicado1/15/2023
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
lolfeedback_project:lolfeedback
Debilidades (CWE)
CWE-89
Referencias
https://github.com/philipblaquiere/lolfeedback/commit/6cf0b5f2228cd8765f734badd37910051000f2b2(cna@vuldb.com)
https://vuldb.com/?ctiid.218353(cna@vuldb.com)
https://vuldb.com/?id.218353(cna@vuldb.com)
https://github.com/philipblaquiere/lolfeedback/commit/6cf0b5f2228cd8765f734badd37910051000f2b2(af854a3a-2127-422b-91ae-364da2661108)
https://vuldb.com/?ctiid.218353(af854a3a-2127-422b-91ae-364da2661108)
https://vuldb.com/?id.218353(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.