Multiple SQL injection vulnerabilities in StatusNet 1.0 before 1.0.2 and 1.1.0 allow remote attackers to execute arbitrary SQL commands via vectors related to user lists and "a particular tag format."
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2013-10-11T22:00:00Z
Updated: 2024-09-17T03:07:53.238Z
Reserved: 2013-06-12T00:00:00Z
Link: CVE-2013-4137
Vulnrichment
No data.
NVD
Status : Modified
Published: 2013-10-11T22:55:39.627
Modified: 2024-11-21T01:54:57.317
Link: CVE-2013-4137
Redhat
No data.