CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2019-15566

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0120%
EPSS Percentile10.63th
Published2019年8月26日
Last Modified2024年11月21日

Vulnerability Description

The Alfresco application before 1.8.7 for Android allows SQL injection in HistorySearchProvider.java.

Affected Platforms (CPE)

📦
Alfresco

Alfresco

< 1.8.7

References & Advisories

🔗 https://github.com/Alfresco/alfresco-android-app/pull/547
🔗 https://github.com/Alfresco/alfresco-android-app/releases/tag/1.8.7
🔗 https://github.com/Alfresco/alfresco-android-app/pull/547
🔗 https://github.com/Alfresco/alfresco-android-app/releases/tag/1.8.7

相關漏洞威脅

CVE-2019-142229.8

An issue was discovered in Alfresco Community Edition versions 6.0 and lower. An unauthenticated, remote attacker could authentica...

CVE-2020-151819.3

The Alfresco Reset Password add-on before version 1.2.0 relies on untrusted inputs in a security decision. Intruders can get admin...

CVE-2020-257288.8

The Reset Password add-on before 1.2.0 for Alfresco has a broken algorithm (involving an increment) that allows a malicious user t...

CVE-2020-128738.8

An issue was discovered in Alfresco Enterprise Content Management (ECM) before 6.2.1. A user with privileges to edit a FreeMarker ...