Lucene search

SQL Injection

🗓️ 04 Dec 2024 19:14:06Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 6 Views

decidim_awesome-module has a SQL Injection vulnerability allowing admin SQL manipulation.

Reporter	Title	Published	Views	Family All 8
Cvelist	CVE-2024-43415 Decidim-Awesome: SQL injection in AdminAccountability	12 Nov 202415:45	–	cvelist
NVD	CVE-2024-43415	12 Nov 202416:15	–	nvd
OSV	Decidim-Awesome has SQL injection in AdminAccountability	12 Nov 202419:52	–	osv
OSV	CVE-2024-43415	12 Nov 202416:15	–	osv
Vulnrichment	CVE-2024-43415 Decidim-Awesome: SQL injection in AdminAccountability	12 Nov 202415:45	–	vulnrichment
CVE	CVE-2024-43415	12 Nov 202416:15	–	cve
Github Security Blog	Decidim-Awesome has SQL injection in AdminAccountability	12 Nov 202419:52	–	github
RubySec	Decidim-Awesome has SQL injection in AdminAccountability	11 Nov 202421:00	–	rubygems

Vulners

Node

veracode decidim\-decidim_awesomeRange0.11.1–0.11.1

veracode decidim\-decidim_awesomeRange0.10.2–0.10.2

veracode decidim\-decidim_awesomeRange0.11.1–0.11.1

veracode decidim\-decidim_awesomeRange0.10.2–0.10.2

Source	Link
github	www.github.com/rubysec/ruby-advisory-db/blob/master/gems/decidim-decidim_awesome/CVE-2024-43415.yml
pentest	www.pentest.ait.ac.at/security-advisory/decidim-awesome-sql-injection-in-adminaccountability
github	www.github.com/decidim-ice/decidim-module-decidim_awesome/commit/84374037d34a3ac80dc18406834169c65869f11b
github	www.github.com/advisories/GHSA-cxwf-qc32-375f

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

04 Dec 2024 19:06Current

7.3High risk

Vulners AI Score7.3

CVSS39

SSVC