Unrated severityNVD Advisory· Published Dec 30, 2022· Updated Aug 3, 2024
KBase Metrics methods_upload_user_stats.py upload_user_data sql injection
CVE-2022-4860
Description
A vulnerability was found in KBase Metrics. It has been classified as critical. This affects the function upload_user_data of the file source/daily_cron_jobs/methods_upload_user_stats.py. The manipulation leads to sql injection. The patch is named 959dfb6b05991e30b0fa972a1ecdcaae8e1dae6d. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-217059.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- KBase/Metricsv5Range: n/a
Patches
Vulnerability mechanics
References
4- github.com/kbase/metrics/commit/959dfb6b05991e30b0fa972a1ecdcaae8e1dae6dmitrepatch
- github.com/kbase/metrics/pull/77mitreissue-tracking
- vuldb.commitresignaturepermissions-required
- vuldb.commitrevdb-entrytechnical-description
News mentions
0No linked articles in our index yet.