CVE: Common Vulnerabilities and Exposures

alert

Notice: Keyword searching of CVE Records is now available in the search box above. Keywords may include a CVE ID (e.g., CVE-2024-1234), or one or more keywords separated by a space (e.g., authorization, SQL Injection, cross site scripting, etc.). Learn more here.

alert

Notice: Keyword searching of CVE Records is now available in the search box above. Keywords may include a CVE ID (e.g., CVE-2024-1234), or one or more keywords separated by a space (e.g., authorization, SQL Injection, cross site scripting, etc.). Learn more here.

Expand or collapse notification button

Required CVE Record Information

Description

A vulnerability was found in TicklishHoneyBee nodau. It has been rated as critical. Affected by this issue is some unknown functionality of the file src/db.c. The manipulation of the argument value/name leads to sql injection. The name of the patch is 7a7d737a3929f335b9717ddbd31db91151b69ad2. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-215252.

CWE 1 Total

CWE-707: CWE-707 Improper Neutralization -> CWE-74 Injection -> CWE-89 SQL Injection

CVSS 1 Total

Product Status

Versions 1 Total

Default Status: unknown

affected

References 3 Total

Updated: 2024-08-03

This container includes required additional information provided by the CVE Program for this vulnerability.

References 3 Total

https://github.com/TicklishHoneyBee/nodau/pull/26
external site
x_transferred
https://github.com/TicklishHoneyBee/nodau/commit/7a7d737a3929f335b9717ddbd31db91151b69ad2
external site
x_transferred
https://vuldb.com/?id.215252
external site
x_transferred