4 matches found
CVE-2020-15153
Ampache before version 4.2.2 allows unauthenticated users to perform SQL injection. Refer to the referenced GitHub Security Advisory for details and a workaround. This is fixed in version 4.2.2 and the development branch...
UBUNTU-CVE-2020-15153
Ampache before version 4.2.2 allows unauthenticated users to perform SQL injection. Refer to the referenced GitHub Security Advisory for details and a workaround. This is fixed in version 4.2.2 and the development branch...
CVE-2020-15153 Unauthenticated SQL injection in Ampache
Ampache before version 4.2.2 allows unauthenticated users to perform SQL injection. Refer to the referenced GitHub Security Advisory for details and a workaround. This is fixed in version 4.2.2 and the development branch...
CVE-2020-15153
Ampache (PHP-based media server) is affected by CVE-2020-15153: before version 4.2.2, unauthenticated users can perform SQL injection via the web interface. The root cause is an unsafely constructed SQL statement that allows injection, leading to potential exposure of data or modification of the ...