4 matches found
CVE-2020-22784
In Etherpad UeberDB 0.4.4, due to MySQL omitting trailing spaces on char / varchar columns during comparisons, retrieving database records using UeberDB's MySQL connector could allow bypassing access controls enforced on key names...
CVE-2020-22784
In Etherpad UeberDB 0.4.4, due to MySQL omitting trailing spaces on char / varchar columns during comparisons, retrieving database records using UeberDB's MySQL connector could allow bypassing access controls enforced on key names...
CVE-2020-22784
In Etherpad UeberDB 0.4.4, due to MySQL omitting trailing spaces on char / varchar columns during comparisons, retrieving database records using UeberDB's MySQL connector could allow bypassing access controls enforced on key names...
CVE-2020-22784
Affected software : Etherpad UeberDB (pre-0.4.4). Root cause : MySQL omits trailing spaces on CHAR/VARCHAR during comparisons, allowing bypass of key-name access controls via the MySQL connector. Impact : Bypassing access controls for key names in database records. Status : Exploitation details n...