CVE-2014-125050

A vulnerability was found in ScottTZhang voter-js and classified as critical. Affected by this issue is some unknown functionality of the file main.js. The manipulation leads to sql injection. The name of the patch is 6317c67a56061aeeaeed3cf9ec665fd9983d8044. It is recommended to apply a patch to fix this issue. VDB-217562 is the identifier assigned to this vulnerability.
References
Link Resource
https://github.com/ScottTZhang/voter-js/pull/15 Patch Third Party Advisory
https://vuldb.com/?ctiid.217562 Permissions Required Third Party Advisory
https://vuldb.com/?id.217562 Permissions Required Third Party Advisory
https://github.com/ScottTZhang/voter-js/commit/6317c67a56061aeeaeed3cf9ec665fd9983d8044 Patch Third Party Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:voter-js_project:voter-js:*:*:*:*:*:*:*:*

Information

Published : 2023-01-06 09:15

Updated : 2023-01-12 07:32


NVD link : CVE-2014-125050

Mitre link : CVE-2014-125050


JSON object : View

CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Advertisement

dedicated server usa

Products Affected

voter-js_project

  • voter-js