CVE-2015-10008

** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in 82Flex WEIPDCRM. It has been classified as critical. This affects an unknown part. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The identifier of the patch is 43bad79392332fa39e31b95268e76fbda9fec3a4. It is recommended to apply a patch to fix this issue. The identifier VDB-217185 was assigned to this vulnerability. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
Configurations

Configuration 1 (hide)

cpe:2.3:a:weipdcrm_project:weipdcrm:*:*:*:*:*:*:*:*

History

21 Nov 2024, 02:24

Type Values Removed Values Added
References () https://github.com/82Flex/WEIPDCRM/commit/43bad79392332fa39e31b95268e76fbda9fec3a4 - Patch, Third Party Advisory () https://github.com/82Flex/WEIPDCRM/commit/43bad79392332fa39e31b95268e76fbda9fec3a4 - Patch, Third Party Advisory
References () https://vuldb.com/?ctiid.217185 - Third Party Advisory () https://vuldb.com/?ctiid.217185 - Third Party Advisory
References () https://vuldb.com/?id.217185 - Third Party Advisory () https://vuldb.com/?id.217185 - Third Party Advisory
CVSS v2 : 6.5
v3 : 9.8
v2 : 6.5
v3 : 6.3

11 Apr 2024, 00:52

Type Values Removed Values Added
Summary
  • (es) ** NO SOPORTADO CUANDO SE ASIGNÓ ** Se encontró una vulnerabilidad en 82Flex WEIPDCRM. Ha sido clasificada como crítica. Esto afecta a una parte desconocida. La manipulación conduce a la inyección SQL. Es posible iniciar el ataque de forma remota. El identificador del parche es 43bad79392332fa39e31b95268e76fbda9fec3a4. Se recomienda aplicar un parche para solucionar este problema. A esta vulnerabilidad se le asignó el identificador VDB-217185. NOTA: Esta vulnerabilidad solo afecta a productos que ya no son compatibles con el fabricante.

29 Feb 2024, 01:16

Type Values Removed Values Added
New CVE

Information

Published : 2023-01-02 11:15

Updated : 2024-11-21 02:24


NVD link : CVE-2015-10008

Mitre link : CVE-2015-10008

CVE.ORG link : CVE-2015-10008


JSON object : View

Products Affected

weipdcrm_project

  • weipdcrm
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')