CVE-2018-5960

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2018-5960

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-5960.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2018-5960

Aliases

GHSA-jf5f-h3wr-j666

Published

2018-01-22T01:29:00Z

Modified

2024-09-03T02:09:15.562564Z

Severity

8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

Zenario v7.1 - v7.6 has SQL injection via the Name input field of organizer.php or admin_boxes.ajax.php in the Categories - Edit module.

References

https://www.vulnerability-lab.com/get_content.php?id=2043

Affected packages

Git / github.com/tribalsystems/zenario

Affected ranges

Type: GIT
Repo: https://github.com/tribalsystems/zenario
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

08e6e111a4084acf1c37a7fa345910c3132e90b3

Last affected

35dba3d4db63886ccb7777b832ec2455060cd1ee

Last affected

534a2da8651f2c69caf35fbb45b5558a1f6855ac

Last affected

bb18012c1c874282eab462311439c47add440236

Last affected

d933f100bb34647c29190fef224c63a1895b287e

Affected versions

7.*

7.0.2e

7.0.3a

7.0.4b

7.0.5b

7.0.5c

7.0.6a

7.0.6b

7.0.7a

7.0.7b

7.0.7c

7.0.7d

7.0.7e

7.1.0

7.1.1

7.1.2

7.2.0

7.2.1

7.2.2

7.2.3

7.3.0

7.4.0

7.4.1

7.4.2

7.4.3

7.4.4

7.5.0