6 matches found
CVE-2014-5308
Summary (CVE-2014-5308) : In TestLink 1.9.11, there are multiple SQL injection vulnerabilities exploitable by an authenticated remote attacker . The confirmed vectors affect: (1) the name parameter of the Search action to lib/project/projectView.php, and (2) the id parameter to lib/events/eventin...
TestLink 1.9.11 - Multiple SQL Injections
Vulnerability title: Multiple SQL Injection Vulnerabilities in TestLink CVE: CVE-2014-5308 Vendor: Testlink Product: TestLink Affected version: 1.9.11 Fixed version: Fixed in SVN commit number 7a09973 Reported by: Jerzy Kramarz Details: Two SQL injection vulnerabilities have been found and...
TestLink 1.9.11 - Multiple SQL Injection Vulnerabilities
Two SQL injection vulnerabilities have been found and confirmed within the software as an authenticated user. A successful attack could allow an authenticated attacker to access information such as usernames and password hashes that are stored in the database. The following URLs and parameters ha...
CVE-2014-5308
creationtimestamp| type| source ---|---|--- 2014-10-02 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/34863...
TestLink 1.9.11 - Multiple SQL Injections
TestLink 1.9.11 - Multiple SQL Injections Vulnerability title: Multiple SQL Injection Vulnerabilities in TestLink CVE: CVE-2014-5308 Vendor: Testlink Product: TestLink Affected version: 1.9.11 Fixed version: Fixed in SVN commit number 7a09973 Reported by: Jerzy Kramarz Details: Two SQL injection...
TestLink 1.9.11 SQL Injection
Vulnerability title: Multiple SQL Injection Vulnerabilities in TestLink CVE: CVE-2014-5308 Vendor: Testlink Product: TestLink Affected version: 1.9.11 Fixed version: Fixed in SVN commit number 7a09973 Reported by: Jerzy Kramarz Details: Two SQL injection vulnerabilities have been found and...