Multiple SQL injection vulnerabilities in StatusNet 1.0 before 1.0.2 and 1.1.0 allow remote attackers to execute arbitrary SQL commands via vectors related to user lists and "a particular tag format."
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2013-10-11T22:00:00Z
Updated: 2024-09-17T03:07:53.238Z
Reserved: 2013-06-12T00:00:00Z
Link: CVE-2013-4137
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2013-10-11T22:55:39.627
Modified: 2013-10-15T14:42:04.823
Link: CVE-2013-4137
Redhat
No data.