SQLiteManager 1.2.4: Multiple XSSDate: 2015-10-07 15:58:36
Update: This vulnerability was already present and known in the previous 1.2.0 version of SQLiteManager (CVE-2007-1231). The project is no longer maintained.
|Affected Product:||SQLiteManager 1.2.4|
|Fixed in:||not fixed|
|Fixed Version Link:||n/a|
|Reported to vendor:||09/01/2015|
|Disclosed to public:||10/07/2015|
|Release mode:||Full Disclosure|
|Credits||Tim Coen of Curesec GmbH|
2. Vulnerability Description
3. Proof of Concept
This issue was not fixed by the vendor.
5. Report Timeline
|09/01/2015||Informed Vendor about Issue (no reply)|
|09/22/2015||Reminded Vendor of disclosure date (no reply)|
|10/07/2015||Disclosed to public|