VYPR
Unrated severityNVD Advisory· Published Jan 24, 2020· Updated Aug 6, 2024

CVE-2014-1924

CVE-2014-1924

Description

The MARC framework import/export function (admin/import_export_framework.pl) in Koha before 3.8.23, 3.10.x before 3.10.13, 3.12.x before 3.12.10, and 3.14.x before 3.14.3 does not require authentication, which allows remote attackers to conduct SQL injection attacks via unspecified vectors.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Koha/Kohadescription
  • Koha/Kohallm-fuzzy
    Range: <3.8.23, >=3.10.0 <3.10.13, >=3.12.0 <3.12.10, >=3.14.0 <3.14.3

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.