Lucene search
+L

5 matches found

ubuntucve
ubuntucve
added 2020/01/25 8:15 p.m.23 views

CVE-2020-7981

sql.rb in Geocoder before 1.6.1 allows Boolean-based SQL injection when withinboundingbox is used in conjunction with untrusted swlat, swlng, nelat, or nelng data...

9.8CVSS7.2AI score0.01484EPSS
Exploits0References3
osv
osv
added 2020/01/25 8:15 p.m.24 views

UBUNTU-CVE-2020-7981

sql.rb in Geocoder before 1.6.1 allows Boolean-based SQL injection when withinboundingbox is used in conjunction with untrusted swlat, swlng, nelat, or nelng data...

9.8CVSS7.2AI score0.01484EPSS
Exploits0References4
cve
cve
added 2020/01/25 7:18 p.m.135 views

CVE-2020-7981

The CVE-2020-7981 issue affects Geocoder (Geocoder gem) and is caused by a Boolean-based SQL injection in sql.rb prior to version 1.6.1 when within_bounding_box is used with untrusted sw_lat, sw_lng, ne_lat, or ne_lng data. Concretely, vulnerable in Geocoder up to 1.6.0; update to 1.6.1 or newer ...

9.8CVSS9.8AI score0.01484EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2020/01/25 7:18 p.m.21 views

CVE-2020-7981

sql.rb in Geocoder before 1.6.1 allows Boolean-based SQL injection when withinboundingbox is used in conjunction with untrusted swlat, swlng, nelat, or nelng data...

10AI score0.01484EPSS
Exploits0References2
debiancve
debiancve
added 2020/01/25 7:18 p.m.30 views

CVE-2020-7981

sql.rb in Geocoder before 1.6.1 allows Boolean-based SQL injection when withinboundingbox is used in conjunction with untrusted swlat, swlng, nelat, or nelng data...

9.8CVSS9.9AI score0.01484EPSS
Exploits0
Rows per page
Query Builder