3 matches found
CVE-2026-33767
WWBN AVideo is an open source video platform. In versions up to and including 26.0, in objects/like.php, the getLike method constructs a SQL query using a prepared statement placeholder ? for usersid but directly concatenates $this-videosid into the query string without parameterization. An...
CVE-2026-33767
WWBN AVideo is an open source video platform. In versions up to and including 26.0, in objects/like.php, the getLike method constructs a SQL query using a prepared statement placeholder ? for usersid but directly concatenates $this-videosid into the query string without parameterization. An...
Security Bulletin: Hortonworks Technical Alert: CVE-2018-1284, CVE-2018-1282, CVE-2018-1315 fixes for Hive
Summary IBM Technical Support would like to make you aware of a potential issue you may encounter. Please review the details below and take action accordingly. Vulnerability Details COMPONENT : Hive/Hive2 VERSION : All HDP versions from HDP 1.0.0 to HDP 2.6.4 REFERENCE : CVE-2018-1284 PROBLEM :...