CVE-2016-15021

A vulnerability was found in nickzren alsdb. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to sql injection. Upgrading to version v2 is able to address this issue. The identifier of the patch is cbc79a68145e845f951113d184b4de207c341599. It is recommended to upgrade the affected component. The identifier VDB-218429 was assigned to this vulnerability.
References
Link Resource
https://github.com/nickzren/alsdb/commit/cbc79a68145e845f951113d184b4de207c341599 Patch Third Party Advisory
https://github.com/nickzren/alsdb/releases/tag/v2 Release Notes Third Party Advisory
https://vuldb.com/?ctiid.218429 Permissions Required Third Party Advisory VDB Entry
https://vuldb.com/?id.218429 Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

cpe:2.3:a:columbia:als_data_browser:1:*:*:*:*:*:*:*

History

11 Apr 2024, 00:55

Type Values Removed Values Added
Summary
  • (es) Se encontró una vulnerabilidad en nickzren alsdb. Ha sido calificada como crítica. Este problema afecta algún procesamiento desconocido. La manipulación conduce a la inyección SQL. La actualización a la versión v2 puede solucionar este problema. El identificador del parche es cbc79a68145e845f951113d184b4de207c341599. Se recomienda actualizar el componente afectado. A esta vulnerabilidad se le asignó el identificador VDB-218429.

07 Nov 2023, 02:29

Type Values Removed Values Added
CWE CWE-89

20 Oct 2023, 11:15

Type Values Removed Values Added
Summary A vulnerability was found in nickzren alsdb. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to sql injection. Upgrading to version v2 is able to address this issue. The name of the patch is cbc79a68145e845f951113d184b4de207c341599. It is recommended to upgrade the affected component. The identifier VDB-218429 was assigned to this vulnerability. A vulnerability was found in nickzren alsdb. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to sql injection. Upgrading to version v2 is able to address this issue. The identifier of the patch is cbc79a68145e845f951113d184b4de207c341599. It is recommended to upgrade the affected component. The identifier VDB-218429 was assigned to this vulnerability.
CWE CWE-89

Information

Published : 2023-01-17 16:15

Updated : 2024-05-17 01:08


NVD link : CVE-2016-15021

Mitre link : CVE-2016-15021

CVE.ORG link : CVE-2016-15021


JSON object : View

Products Affected

columbia

  • als_data_browser
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')