CVE-2019-13489

Trape through 2019-05-08 has SQL injection via the data[2] variable in core/db.py, as demonstrated by the /bs t parameter.
References
Link Resource
https://github.com/jofpin/trape/issues/168 Vendor Advisory
Configurations

Configuration 1

cpe:2.3:a:trape_project:trape:*:*:*:*:*:*:*:*

Information

Published : 2019-07-10 10:15

Updated : 2019-07-14 10:42


NVD link : CVE-2019-13489

Mitre link : CVE-2019-13489

Products Affected
No products.
CWE