Multiple SQL injection vulnerabilities in app/controllers/home_controller.rb in Fat Free CRM before 0.12.1 allow remote authenticated users to execute arbitrary SQL commands via (1) the homepage timeline feature or (2) the activity feature.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2014-01-02T11:00:00
Updated: 2024-08-06T18:01:20.398Z
Reserved: 2013-12-28T00:00:00
Link: CVE-2013-7225
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2014-01-02T14:59:04.157
Modified: 2014-01-03T17:04:34.597
Link: CVE-2013-7225
Redhat
No data.