PT-2023-10128 · Unknown · Learnmesomecodes Project3
Published
2023-01-07
·
Updated
2024-05-17
·
CVE-2014-125058
CVSS v2.0
5.2
Medium
| Vector | AV:A/AC:L/Au:S/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
LearnMeSomeCodes project3 (affected versions not specified)
Description
A critical issue was found in the LearnMeSomeCodes project3, affecting the
search first name function of the file search.rb. This issue leads to sql injection. The maintainer is aware of this issue, as noted in the source code.Recommendations
To fix this issue, it is recommended to apply the patch named d3efa17ae9f6b2fc25a6bbcf165cefed17c7035e. As a temporary workaround, consider disabling the
search first name function until the patch is applied.Fix
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Learnmesomecodes Project3