CVE-2019-19026

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2019-19026
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-19026.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2019-19026
Aliases
Published
2020-03-20T03:15:13.310Z
Modified
2026-03-10T22:43:57.590646181Z
Severity
  • 4.9 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
Summary
[none]
Details

Cloud Native Computing Foundation Harbor prior to 1.8.6 and 1.9.3 allows SQL Injection via project quotas in the VMware Harbor Container Registry for the Pivotal Platform.

References

Affected packages

Git / github.com/goharbor/harbor

Affected ranges

Type
GIT
Repo
https://github.com/goharbor/harbor
Events
Introduced
8017a20e0c04a66367d71d6a9ea80c8430ee51ef
Fixed
5d2c4c2df6bbd5ecee385b48fe9f778ed95c506c
Introduced
31b34e3658116e74d1ef3dd713a681765288018c
Fixed
730d6d28a567f8bda31baa0a2a8681d23d9d25cc
Database specific 
{
    "versions": [
        {
            "introduced": "1.7.0"
        },
        {
            "fixed": "1.8.6"
        },
        {
            "introduced": "1.9.0"
        },
        {
            "fixed": "1.9.3"
        }
    ]
}

Affected versions

v1.*
v1.9.0
v1.9.1
v1.9.1-rc1
v1.9.2
v1.9.2-rc1
v1.9.3-rc1

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-19026.json"