Vulnerability Description
SQL injection vulnerability in Jifty::DBI before 0.68.
CVSS Score
9.8
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Jifty\ | \ | < 0.68, dbi_project |
Related Weaknesses (CWE)
References
- http://lists.jifty.org/pipermail/jifty-devel/2011-April/002426.htmlPatchThird Party Advisory
- https://access.redhat.com/security/cve/cve-2011-1933Broken Link
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=622919Third Party Advisory
- https://metacpan.org/changes/distribution/Jifty-DBIRelease Notes
- https://seclists.org/oss-sec/2011/q2/464Mailing ListThird Party Advisory
- https://security-tracker.debian.org/tracker/CVE-2011-1933Third Party Advisory
- http://lists.jifty.org/pipermail/jifty-devel/2011-April/002426.htmlPatchThird Party Advisory
- https://access.redhat.com/security/cve/cve-2011-1933Broken Link
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=622919Third Party Advisory
- https://metacpan.org/changes/distribution/Jifty-DBIRelease Notes
- https://seclists.org/oss-sec/2011/q2/464Mailing ListThird Party Advisory
- https://security-tracker.debian.org/tracker/CVE-2011-1933Third Party Advisory
FAQ
What is CVE-2011-1933?
CVE-2011-1933 is a vulnerability with a CVSS score of 9.8 (CRITICAL). SQL injection vulnerability in Jifty::DBI before 0.68.
How severe is CVE-2011-1933?
CVE-2011-1933 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2011-1933?
Check the references section above for vendor advisories and patch information. Affected products include: Jifty\ \.