Lucene search

silverstripe restfulserver and registry modules SQL injection vulnerability

🗓️ 24 May 2022 16:47:47Reported by GitHub Advisory DatabaseType

SQL injection vulnerability in silverstripe/restfulserver and registry module

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 8
NVD	CVE-2019-12149	11 Jun 201922:29	–	nvd
Veracode	SQL Injection	12 Jun 201902:15	–	veracode
CVE	CVE-2019-12149	11 Jun 201922:29	–	cve
Prion	Sql injection	11 Jun 201922:29	–	prion
Friends Of PHP	CVE-2019-12149: Potential SQL injection in restfulserver and registry modules	11 Jun 201916:34	–	friendsofphp
Friends Of PHP	CVE-2019-12149: Potential SQL injection in restfulserver and registry modules	11 Jun 201916:34	–	friendsofphp
Cvelist	CVE-2019-12149	11 Jun 201921:22	–	cvelist
OSV	GHSA-4J6V-3895-8G2J silverstripe restfulserver and registry modules SQL injection vulnerability	24 May 202216:47	–	osv

Vulners

Node

silverstripe restfulserverRange2.0.0–2.0.4

silverstripe restfulserverRange1.0.0–1.0.9

silverstripe registryRange2.2.0–2.2.1

silverstripe registryRange2.1.0–2.1.1

silverstripe restfulserverRange2.1.0–2.1.2

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2019-12149
silverstripe	www.silverstripe.org/download/security-releases/cve-2019-12149
github	www.github.com/FriendsOfPHP/security-advisories/blob/master/silverstripe/restfulserver/CVE-2019-12149.yaml
github	www.github.com/advisories/GHSA-4j6v-3895-8g2j

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 May 2022 16:47Current

8.4High risk

Vulners AI Score8.4

CVSS27.5

CVSS39.8

EPSS0.00366

CWE-89