Lucene search

PRIOn knowledge basePRION:CVE-2011-10002

HistoryFeb 07, 2023 - 5:15 p.m.

Sql injection

2023-02-0717:15:00

PRIOn knowledge base

www.prio-n.com

vulnerability

weblabyrinth

sql injection

upgrade

version 0.3.2

critical

file labyrinth.inc.php

patch 60793fd8c8c4759596d3510641e96ea40e7f60e9

identifier vdb-220221

nvd

7.9 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

59.0%

JSON

A vulnerability classified as critical has been found in weblabyrinth 0.3.1. This affects the function Labyrinth of the file labyrinth.inc.php. The manipulation leads to sql injection. Upgrading to version 0.3.2 is able to address this issue. The identifier of the patch is 60793fd8c8c4759596d3510641e96ea40e7f60e9. It is recommended to upgrade the affected component. The identifier VDB-220221 was assigned to this vulnerability.

CPENameOperatorVersion
weblabyrintheq0.3.1

CPE	Name	Operator	Version
	weblabyrinth	eq	0.3.1

References

code.google.com/archive/p/weblabyrinth/issues/1

github.com/rotelok/weblabyrinth/commit/60793fd8c8c4759596d3510641e96ea40e7f60e9

storage.googleapis.com/google-code-archive-downloads/v2/code.google.com/weblabyrinth/weblabyrinth-0.3.2.tar.gz

vuldb.com/?ctiid.220221

vuldb.com/?id.220221