Lucene search
GitHub Advisory DatabaseGHSA-2RVX-CVFC-MCP2HistoryMay 17, 2022 - 2:35 a.m.
New Relic .NET Agent contains SQL Injection
2022-05-1702:35:57
CWE-89
GitHub Advisory Database
github.com
11
0.002 Low
EPSS
Percentile
59.1%
New Relic .NET Agent before 6.3.123.0 adds SQL injection flaws to safe applications via vectors involving failure to escape quotes during use of the Slow Queries feature, as demonstrated by a mishandled quote in a VALUES clause of an INSERT statement, after bypassing a SET SHOWPLAN_ALL ON protection mechanism.
| CPE | Name | Operator | Version |
|---|---|---|---|
| newrelic.agent | lt | 6.3.123.0 |
Related
prion
prion
Sql injection
2017-06-13 18:29:00
cve
cve
CVE-2017-9246
2017-06-13 18:29:00
cvelist
cvelist
CVE-2017-9246
2017-06-13 18:00:00
osv
osv
New Relic .NET Agent contains SQL Injection
2022-05-17 02:35:57