Lucene search
MitreCVELIST:CVE-2013-4662HistoryJan 29, 2014 - 6:00 p.m.
CVE-2013-4662
2014-01-2918:00:00
mitre
www.cve.org
The Quick Search API in CiviCRM 4.2.0 through 4.2.9 and 4.3.0 through 4.3.3 allows remote authenticated users to bypass the validation layer and conduct SQL injection attacks via a direct request to the “second layer” of the API, related to contact.getquick.
Related
debiancve
debiancve
CVE-2013-4662
2014-01-29 18:55:26
osv
osv
CiviCRM SQL injection vulnerability via Quick Search API
2022-05-17 04:52:06
prion
prion
Sql injection
2014-01-29 18:55:00
cve
cve
CVE-2013-4662
2014-01-29 18:55:26
nvd
nvd
CVE-2013-4662
2014-01-29 18:55:26
github
github
CiviCRM SQL injection vulnerability via Quick Search API
2022-05-17 04:52:06