CVE-2012-3469

NONECVSS 0.0

0.0

Multiple SQL injection vulnerabilities in the Ushahidi Platform before 2.5 allow remote attackers to execute arbitrary SQL commands via vectors related to (1) the messages admin functionality in application/controllers/admin/messages.php, (2) application/libraries/api/MY_Checkin_Api_Object.php, (3) application/controllers/admin/messages/reporters.php, or (4) the location API in application/libraries/api/MY_Locations_Api_Object.php and application/models/location.php.

🔗 References (10)

secalert@redhathttp://openwall.com/lists/oss-security/2012/08/09/5
secalert@redhathttps://github.com/ushahidi/Ushahidi_Web/commit/68d9916
secalert@redhathttps://github.com/ushahidi/Ushahidi_Web/commit/6f6a919
secalert@redhathttps://github.com/ushahidi/Ushahidi_Web/commit/a11d43c
secalert@redhathttps://github.com/ushahidi/Ushahidi_Web/commit/e0e2b66
af854a3a-2127-422b-91ae-364da2661108http://openwall.com/lists/oss-security/2012/08/09/5
af854a3a-2127-422b-91ae-364da2661108https://github.com/ushahidi/Ushahidi_Web/commit/68d9916
af854a3a-2127-422b-91ae-364da2661108https://github.com/ushahidi/Ushahidi_Web/commit/6f6a919
af854a3a-2127-422b-91ae-364da2661108https://github.com/ushahidi/Ushahidi_Web/commit/a11d43c
af854a3a-2127-422b-91ae-364da2661108https://github.com/ushahidi/Ushahidi_Web/commit/e0e2b66

Is Your Infrastructure Affected by CVE-2012-3469?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2012-3469

📅 Published

🔄 Last Modified

🔗 References (10)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2012-3469?