CVE-2017-20172 in soundslikeinfo

Zusammenfassung

von MITRE • 18.01.2023

A vulnerability was found in ridhoq soundslike. It has been classified as critical. Affected is the function get_song_relations of the file app/api/songs.py. The manipulation leads to sql injection. The name of the patch is 90bb4fb667d9253d497b619b9adaac83bf0ce0f8. It is recommended to apply a patch to fix this issue. VDB-218490 is the identifier assigned to this vulnerability.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

VulDB

Reservieren

17.01.2023

Veröffentlichung

18.01.2023

Moderieren

akzeptiert

Eintrag

VDB-218490

CPE

bereit

CWE

CWE-89 (bestätigt)

CVSS

9.8 (NVD)

EPSS

0.00347

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-20172
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-20172
CVE Details	https://www.cvedetails.com/cve/CVE-2017-20172/

◂ Zurück Übersicht Weiter ▸

Want to know what is going to be exploited?

We predict KEV entries!