CVE-2015-10070
Last modified
CVE-2015-10070 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. A vulnerability was found in copperwall Twiddit. It has been rated as critical. EPSS estimates a 0.73% chance of exploitation in the next 30 days.
Description
A vulnerability was found in copperwall Twiddit. It has been rated as critical. This issue affects some unknown processing of the file index.php. The manipulation leads to sql injection. The identifier of the patch is 2203d4ce9810bdaccece5c48ff4888658a01acfc. It is recommended to apply a patch to fix this issue. The identifier VDB-218897 was assigned to this vulnerability.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Twiddit Project | Twiddit | < 2015-03-18 |
References
- https://github.com/copperwall/twiddit/commit/2203d4ce9810bdaccece5c48ff4888658a01acfcPatch, Third Party Advisory
- https://vuldb.com/?ctiid.218897Permissions Required, Third Party Advisory
- https://vuldb.com/?id.218897Permissions Required, Third Party Advisory
- https://github.com/copperwall/twiddit/commit/2203d4ce9810bdaccece5c48ff4888658a01acfcPatch, Third Party Advisory
- https://vuldb.com/?ctiid.218897Permissions Required, Third Party Advisory
- https://vuldb.com/?id.218897Permissions Required, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2015-10070?
How severe is CVE-2015-10070?
How do I fix CVE-2015-10070?
Are you affected by CVE-2015-10070?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST