A vulnerability was found in fanzila WebFinance 0.5. It has been classified as critical. Affected is an unknown function of the file htdocs/admin/save_roles.php. The manipulation of the argument id leads to sql injection. The name of the patch is 6cfeb2f6b35c1b3a7320add07cd0493e4f752af3. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-220056.
History

Tue, 06 Aug 2024 19:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2023-02-03T23:57:03.539Z

Updated: 2024-08-06T18:09:16.956Z

Reserved: 2023-02-02T19:48:07.164Z

Link: CVE-2013-10017

cve-icon Vulnrichment

Updated: 2024-08-06T18:09:16.956Z

cve-icon NVD

Status : Modified

Published: 2023-02-04T00:15:08.660

Modified: 2024-11-21T01:48:40.440

Link: CVE-2013-10017

cve-icon Redhat

No data.