VYPR
← All advisories
Unrated severityNVD Advisory· Published Oct 23, 2013· Updated Apr 29, 2026

CVE-2013-4422

CVE-2013-4422

Description

SQL injection vulnerability in Quassel IRC before 0.9.1, when Qt 4.8.5 or later and PostgreSQL 8.2 or later are used, allows remote attackers to execute arbitrary SQL commands via a \ (backslash) in a message.

Affected products

21
  • Quassel Irc/Quassel Irc21 versions
    cpe:2.3:a:quassel-irc:quassel_irc:*:*:*:*:*:*:*:*+ 20 more
    • cpe:2.3:a:quassel-irc:quassel_irc:*:*:*:*:*:*:*:*range: <=0.9.0
    • cpe:2.3:a:quassel-irc:quassel_irc:0.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:quassel-irc:quassel_irc:0.3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:quassel-irc:quassel_irc:0.3.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:quassel-irc:quassel_irc:0.3.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:quassel-irc:quassel_irc:0.3.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:quassel-irc:quassel_irc:0.3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:quassel-irc:quassel_irc:0.4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:quassel-irc:quassel_irc:0.4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:quassel-irc:quassel_irc:0.4.2:*:*:*:*:*:*:*
    • cpe:2.3:a:quassel-irc:quassel_irc:0.4.3:*:*:*:*:*:*:*
    • cpe:2.3:a:quassel-irc:quassel_irc:0.5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:quassel-irc:quassel_irc:0.6.1:*:*:*:*:*:*:*
    • cpe:2.3:a:quassel-irc:quassel_irc:0.6.2:*:*:*:*:*:*:*
    • cpe:2.3:a:quassel-irc:quassel_irc:0.6.3:*:*:*:*:*:*:*
    • cpe:2.3:a:quassel-irc:quassel_irc:0.7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:quassel-irc:quassel_irc:0.7.1:*:*:*:*:*:*:*
    • cpe:2.3:a:quassel-irc:quassel_irc:0.7.2:*:*:*:*:*:*:*
    • cpe:2.3:a:quassel-irc:quassel_irc:0.7.3:*:*:*:*:*:*:*
    • cpe:2.3:a:quassel-irc:quassel_irc:0.7.4:*:*:*:*:*:*:*
    • cpe:2.3:a:quassel-irc:quassel_irc:0.8.0:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

8

News mentions

0

No linked articles in our index yet.