Vanilla before 2.6.1 allows SQL injection via an invitationID array to /profile/deleteInvitation, related to applications/dashboard/models/class.invitationmodel.php and applications/dashboard/controllers/class.profilecontroller.php.
References
| Link | Resource |
|---|---|
| https://hackerone.com/reports/353784 | Exploit Third Party Advisory |
| https://open.vanillaforums.com/discussion/36559 | Patch Vendor Advisory |
| https://hackerone.com/reports/353784 | Exploit Third Party Advisory |
| https://open.vanillaforums.com/discussion/36559 | Patch Vendor Advisory |
Configurations
History
21 Nov 2024, 03:52
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://hackerone.com/reports/353784 - Exploit, Third Party Advisory | |
| References | () https://open.vanillaforums.com/discussion/36559 - Patch, Vendor Advisory |
Information
Published : 2018-09-03 19:29
Updated : 2024-11-21 03:52
NVD link : CVE-2018-16410
Mitre link : CVE-2018-16410
CVE.ORG link : CVE-2018-16410
JSON object : View
Products Affected
vanillaforums
- vanilla
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')