LSE Leading Security Experts GmbH – LSE-2015-10-14 – HumHub SQL-Injection

November 30, 2015 007admin Leave a comment

Posted by advisories on Nov 30

=== LSE Leading Security Experts GmbH – Security Advisory 2015-10-14 ===

HumHub – SQL-Injection
————————————————————————

Tested Versions
===============
HumHub 0.11.2 and 0.20.0-beta.2

Issue Overview
==============
Vulnerability Type: 89 – Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’)
Technical Risk: high
Likelihood of Exploitation: high
Vendor:…

007 Software

LSE Leading Security Experts GmbH – LSE-2015-10-14 – HumHub SQL-Injection

Leave a Reply Cancel reply

Software and Security Information