CVE-2020-8841

An issue was discovered in TestLink 1.9.19. The relation_type parameter of the lib/requirements/reqSearch.php endpoint is vulnerable to authenticated SQL Injection.
References
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:testlink:testlink:1.9.19:*:*:*:*:*:*:*

Information

Published : 2020-02-10 13:56

Updated : 2020-02-12 11:45


NVD link : CVE-2020-8841

Mitre link : CVE-2020-8841


JSON object : View

CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Advertisement

dedicated server usa

Products Affected

testlink

  • testlink