A vulnerability was found in evandro-machado Trabalho-Web2. It has been classified as critical. This affects an unknown part of the file src/java/br/com/magazine/dao/ClienteDAO.java. The manipulation leads to sql injection. The patch is named f59ac954625d0a4f6d34f069a2e26686a7a20aeb. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-218427.
References
Link | Resource |
---|---|
https://github.com/evandro-machado/Trabalho-Web2/commit/f59ac954625d0a4f6d34f069a2e26686a7a20aeb | Patch Third Party Advisory |
https://vuldb.com/?ctiid.218427 | Permissions Required Third Party Advisory VDB Entry |
https://vuldb.com/?id.218427 | Third Party Advisory VDB Entry |
Configurations
History
11 Apr 2024, 00:53
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
07 Nov 2023, 02:23
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-89 |
20 Oct 2023, 09:15
Type | Values Removed | Values Added |
---|---|---|
CWE | ||
Summary | A vulnerability was found in evandro-machado Trabalho-Web2. It has been classified as critical. This affects an unknown part of the file src/java/br/com/magazine/dao/ClienteDAO.java. The manipulation leads to sql injection. The patch is named f59ac954625d0a4f6d34f069a2e26686a7a20aeb. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-218427. |
Information
Published : 2023-01-17 16:15
Updated : 2024-05-17 01:03
NVD link : CVE-2015-10061
Mitre link : CVE-2015-10061
CVE.ORG link : CVE-2015-10061
JSON object : View
Products Affected
trabalho-web2_project
- trabalho-web2
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')