Lucene search
PRIOn knowledge basePRION:CVE-2021-3286HistoryJan 26, 2021 - 6:16 p.m.
Sql injection
2021-01-2618:16:00
PRIOn knowledge base
www.prio-n.com
2
SQL injection exists in Spotweb 1.4.9 because the notAllowedCommands protection mechanism is inadequate, e.g., a variation of the payload may be used. NOTE: this issue exists because of an incomplete fix for CVE-2020-35545.
References
Related
ubuntucve
ubuntucve
CVE-2020-35545
2020-12-17 00:00:00
CVE-2021-3286
2021-01-26 00:00:00
nvd
nvd
CVE-2021-3286
2021-01-26 18:16:29
CVE-2020-35545
2020-12-17 20:15:14
cvelist
cvelist
CVE-2021-3286
2021-01-24 08:41:02
CVE-2020-35545
2020-12-17 19:46:25
osv
osv
CVE-2021-3286
2021-01-26 18:16:29
CVE-2020-35545
2020-12-17 20:15:14
debiancve
debiancve
CVE-2021-3286
2021-01-26 18:16:29
CVE-2020-35545
2020-12-17 20:15:14
cve
cve
CVE-2021-3286
2021-01-26 18:16:29
CVE-2020-35545
2020-12-17 20:15:14
prion
prion
Sql injection
2020-12-17 20:15:00
exploitdb
exploitdb
Spotweb 1.4.9 - 'search' SQL Injection
2020-12-21 00:00:00
packetstorm
packetstorm
Spotweb 1.4.9 SQL Injection
2020-12-20 00:00:00
checkpoint_advisories
checkpoint_advisories
Unauthorized SQL Commands Over HTTP (CVE-2020-15153; CVE-2020-35545)
2021-06-20 00:00:00