VYPR
Unrated severityNVD Advisory· Published Apr 30, 2021· Updated Aug 4, 2024

Unauthenticated SQL injection in Ampache

CVE-2020-15153

Description

Ampache before version 4.2.2 allows unauthenticated users to perform SQL injection. Refer to the referenced GitHub Security Advisory for details and a workaround. This is fixed in version 4.2.2 and the development branch.

Affected products

2
  • Ampache/Ampachellm-fuzzy2 versions
    <4.2.2+ 1 more
    • (no CPE)range: <4.2.2
    • (no CPE)range: < 4.2.2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.