vendor:
by:
Felix Groebert
9
CVSS
CRITICAL
SQL Injection
89
CWE
Product Name:
Affected Version From: <= 0.5.2
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested:
2007
NoseRub Login SQL Injection Vulnerability
The login script fails to validate user input, allowing for SQL injection attacks.
Mitigation:
The vendor has been informed and a fixed version will be released soon.