CVE-2013-10014 MEDIUM

CVE-2013-10014: oktora24 2moons sql injection

Vendor Oktora24
Product 2moons
Weakness CWE-89 · SQLi
Published January 19, 2023
Last update November 25, 2024

CVSS base score

5.5/10
Attack vector Adjacent
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

What the vulnerability does

01Description

A vulnerability classified as critical has been found in oktora24 2moons. Affected is an unknown function. The manipulation leads to sql injection. The patch is identified as 1b09cf7672eb85b5b0c8a4de321f7a4ad87b09a7. It is recommended to apply a patch to fix this issue. VDB-218898 is the identifier assigned to this vulnerability.

Key dates

02Disclosure timeline

January 19, 2023 CVE published
November 25, 2024 Record updated