Description
A blind SQL injection vulnerability in search form in TeamMate+ Audit version 28.0.19.0 allows any authenticated user to create malicious SQL injections, which can result in complete database compromise, gaining information about other users, unauthorized access to audit data etc.
Published: 2022-06-06
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2021-28929 A blind SQL injection vulnerability in search form in TeamMate+ Audit version 28.0.19.0 allows any authenticated user to create malicious SQL injections, which can result in complete database compromise, gaining information about other users, unauthorized access to audit data etc.
References
Link Providers
https://mjilek.cz/blog/CVE-2021-41932/ cve-icon cve-icon
History

No history.

Subscriptions

Wolterskluwer Teammate\+ Audit
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-04T03:22:25.276Z

Reserved: 2021-10-04T00:00:00.000Z

Link: CVE-2021-41932

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-06-06T15:15:08.230

Modified: 2024-11-21T06:26:58.393

Link: CVE-2021-41932

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses