CVE-2014-8673: SQL Injection
First published: Tue Jan 07 2020(Updated: )
Multiple SQL vulnerabilities exist in planning.php, user_list.php, projets.php, user_groupes.php, and groupe_list.php in Simple Online Planning (SOPPlanning)before 1.33.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Soplanning Soplanning | <=1.32 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2014-8673?
CVE-2014-8673 is a vulnerability that existed in Simple Online Planning (SOPPlanning) before version 1.33.
What is the severity of CVE-2014-8673?
CVE-2014-8673 has a severity rating of 9.8, which is classified as critical.
Which software versions are affected by CVE-2014-8673?
Versions up to and including 1.32 of Soplanning Soplanning are affected by CVE-2014-8673.
How can I fix CVE-2014-8673?
To fix CVE-2014-8673, it is recommended to update Simple Online Planning (SOPPlanning) to version 1.33 or later.
Are there any references for CVE-2014-8673?
Yes, you can find more information about CVE-2014-8673 at the following references: [Reference 1](http://packetstormsecurity.com/files/132654/Simple-Online-Planning-Tool-1.3.2-XSS-SQL-Injection-Traversal.html), [Reference 2](http://seclists.org/fulldisclosure/2015/Jul/44), [Reference 3](http://www.securityfocus.com/bid/75726).
- collector/nvd-index
- agent/type
- vendor/soplanning
- canonical/soplanning soplanning
- version/soplanning soplanning/1.32