VYPR

Metrics

by Brian Renaud

CVEs (2)

  • CVE-2022-4860Dec 30, 2022
    risk 0.00cvss epss 0.01

    A vulnerability was found in KBase Metrics. It has been classified as critical. This affects the function upload_user_data of the file source/daily_cron_jobs/methods_upload_user_stats.py. The manipulation leads to sql injection. The patch is named…

  • CVE-2003-0202Apr 15, 2004
    risk 0.00cvss epss 0.00

    The (1) halstead and (2) gather_stats scripts in metrics 1.0 allow local users to overwrite arbitrary files via a symlink attack on temporary files.