CVE-2015-10023

CVSS v2.0

5.2

Medium

Vector

AV:A/AC:L/Au:S/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Fumon trello-octometric (affected versions not specified)

Description A critical issue has been found in Fumon trello-octometric, affecting the main function of the file metrics-ui/server/srv.go. The manipulation of the num argument leads to sql injection.

Recommendations Apply the patch named a1f1754933fbf21e2221fbc671c81a47de6a04ef to fix this issue. As a temporary workaround, consider restricting the manipulation of the num argument in the main function until the patch is applied.

Fix

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-89

Related Identifiers

CVE-2015-10023

Affected Products

Fumon Trello-Octometric

CVE-2015-10023

Weakness Enumeration

Related Identifiers

Affected Products

References · 5