First published: Fri Mar 13 2020(Updated: )
A Blind SQL Injection issue was discovered in Sapplica Sentrifugo 3.2 via the index.php/holidaygroups/add id parameter because of the HolidaydatesController.php addAction function.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Sapplica Sentrifugo | =3.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-10218 is a Blind SQL Injection vulnerability discovered in Sapplica Sentrifugo 3.2.
CVE-2020-10218 has a severity score of 6.5, which is considered medium.
Sapplica Sentrifugo version 3.2 is affected by CVE-2020-10218.
To fix CVE-2020-10218, it is recommended to update to the latest version of Sapplica Sentrifugo.
More information about CVE-2020-10218 can be found on the official GitHub repository and the Exploit-DB website.