A vulnerability was found in Centralized-Salesforce-Dev-Framework. It has been declared as problematic. Affected by this vulnerability is the function SObjectService of the file src/classes/SObjectService.cls of the component SOQL Handler. The manipulation of the argument orderDirection leads to injection. The patch is named db03ac5b8a9d830095991b529c067a030a0ccf7b. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-217195.
References
Link | Resource |
---|---|
https://github.com/scottbcovert/Centralized-Salesforce-Dev-Framework/commit/db03ac5b8a9d830095991b529c067a030a0ccf7b | Patch Third Party Advisory |
https://vuldb.com/?ctiid.217195 | Permissions Required Third Party Advisory |
https://vuldb.com/?id.217195 | Permissions Required Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: VulDB
Published: 2023-01-02T18:36:41.878Z
Updated: 2023-10-20T09:51:22.562Z
Reserved: 2023-01-02T18:27:16.576Z
Link: CVE-2016-15007
JSON object: View
NVD Information
Status : Modified
Published: 2023-01-02T19:15:10.387
Modified: 2024-05-17T01:08:08.273
Link: CVE-2016-15007
JSON object: View
Redhat Information
No data.
CWE