CVE Vulnerabilities

CVE-2001-1348

Published: May 28, 2001 | Modified: Sep 05, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

TWIG 2.6.2 and earlier allows remote attackers to perform unauthorized database operations via a SQL injection attack on the id parameter.

Affected Software

Name Vendor Start Version End Version
Twig Twig_development_team 2.0 2.0
Twig Twig_development_team 2.0.1 2.0.1
Twig Twig_development_team 2.0.2 2.0.2
Twig Twig_development_team 2.0.3 2.0.3
Twig Twig_development_team 2.0_beta1 2.0_beta1
Twig Twig_development_team 2.0_beta2 2.0_beta2
Twig Twig_development_team 2.0_beta3 2.0_beta3
Twig Twig_development_team 2.1 2.1
Twig Twig_development_team 2.1.1 2.1.1
Twig Twig_development_team 2.2 2.2
Twig Twig_development_team 2.2.1 2.2.1
Twig Twig_development_team 2.2.2 2.2.2
Twig Twig_development_team 2.2.3 2.2.3
Twig Twig_development_team 2.3 2.3
Twig Twig_development_team 2.3.1 2.3.1
Twig Twig_development_team 2.3.2 2.3.2
Twig Twig_development_team 2.4 2.4
Twig Twig_development_team 2.5 2.5
Twig Twig_development_team 2.5.1 2.5.1
Twig Twig_development_team 2.6 2.6
Twig Twig_development_team 2.6.1 2.6.1

References