Vulnerability Description
A vulnerability was found in challenge website. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to sql injection. The name of the patch is f1644b1d3502e5aa5284f31ea80d2623817f4d42. It is recommended to apply a patch to fix this issue. The identifier VDB-216989 was assigned to this vulnerability.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Challenge Website Project | Challenge Website | < 2017-01-24 |
Related Weaknesses (CWE)
References
- https://github.com/Challenge/website/commit/f1644b1d3502e5aa5284f31ea80d2623817fPatchThird Party Advisory
- https://vuldb.com/?ctiid.216989Permissions RequiredThird Party Advisory
- https://vuldb.com/?id.216989Permissions RequiredThird Party Advisory
- https://github.com/Challenge/website/commit/f1644b1d3502e5aa5284f31ea80d2623817fPatchThird Party Advisory
- https://vuldb.com/?ctiid.216989Permissions RequiredThird Party Advisory
- https://vuldb.com/?id.216989Permissions RequiredThird Party Advisory
FAQ
What is CVE-2017-20150?
CVE-2017-20150 is a vulnerability with a CVSS score of 5.5 (MEDIUM). A vulnerability was found in challenge website. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to sql injection. The name of the patch is f1644b1d350...
How severe is CVE-2017-20150?
CVE-2017-20150 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-20150?
Check the references section above for vendor advisories and patch information. Affected products include: Challenge Website Project Challenge Website.