A blind SQL injection vulnerability in search form in TeamMate+ Audit version 28.0.19.0 allows any authenticated user to create malicious SQL injections, which can result in complete database compromise, gaining information about other users, unauthorized access to audit data etc.
References
Link | Resource |
---|---|
https://mjilek.cz/blog/CVE-2021-41932/ | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-06-06T14:33:35
Updated: 2022-06-06T14:33:35
Reserved: 2021-10-04T00:00:00
Link: CVE-2021-41932
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-06-06T15:15:08.230
Modified: 2022-06-13T17:43:08.817
Link: CVE-2021-41932
JSON object: View
Redhat Information
No data.
CWE