VYPR
Unrated severityNVD Advisory· Published Oct 18, 2021· Updated Aug 4, 2024

SQL injection in the "SVN core" commits browser

CVE-2021-41154

Description

Tuleap is a Free & Open Source Suite to improve management of software developments and collaboration. In affected versions an attacker with read access to a "SVN core" repository could execute arbitrary SQL queries. The following versions contain the fix: Tuleap Community Edition 11.17.99.144, Tuleap Enterprise Edition 11.17-5, Tuleap Enterprise Edition 11.16-7.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Enalean/Tuleapllm-fuzzy2 versions
    < 11.17.99.144 (Community) / < 11.17-5 (Enterprise) / < 11.16-7 (Enterprise)+ 1 more
    • (no CPE)range: < 11.17.99.144 (Community) / < 11.17-5 (Enterprise) / < 11.16-7 (Enterprise)
    • (no CPE)range: < 11.17.99.144

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.