A vulnerability, which was classified as critical, was found in githuis P2Manage. This affects the function Execute of the file PTwoManage/Database.cs. The manipulation of the argument sql leads to sql injection. The identifier of the patch is 717380aba80002414f82d93c770035198b7858cc. It is recommended to apply a patch to fix this issue. The identifier VDB-218397 was assigned to this vulnerability.
References
| Link | Resource |
|---|---|
| https://github.com/githuis/P2Manage/commit/717380aba80002414f82d93c770035198b7858cc | Patch Third Party Advisory |
| https://vuldb.com/?ctiid.218397 | Permissions Required Third Party Advisory |
| https://vuldb.com/?id.218397 | Permissions Required Third Party Advisory |
Configurations
History
07 Nov 2023, 02:23
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-89 |
20 Oct 2023, 09:15
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | ||
| Summary | A vulnerability, which was classified as critical, was found in githuis P2Manage. This affects the function Execute of the file PTwoManage/Database.cs. The manipulation of the argument sql leads to sql injection. The identifier of the patch is 717380aba80002414f82d93c770035198b7858cc. It is recommended to apply a patch to fix this issue. The identifier VDB-218397 was assigned to this vulnerability. |
Information
Published : 2023-01-16 18:15
Updated : 2024-05-17 01:03
NVD link : CVE-2015-10054
Mitre link : CVE-2015-10054
JSON object : View
Products Affected
p2manage_project
- p2manage
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')