CVE-2019-15570

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2019-15570

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-15570.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2019-15570

Aliases

GHSA-9gv2-2m38-j6cx

Published

2019-08-26T15:15:12.703Z

Modified

2026-05-30T13:50:37.239530Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

BEdita through 4.0.0-RC2 allows SQL injection during a save operation for a relation with parameters.

References

https://github.com/bedita/bedita/pull/1608

Affected packages

Git / github.com/bedita/bedita

Affected ranges

Type

GIT

Repo

https://github.com/bedita/bedita

Events

Introduced

Last affected

b590234892015471c148beda119f1d9f9afd067b

Last affected

60a64245bd304807d0d83078e412c01f3174a5c2

Last affected

158e1ad7805d1f2daeab2e96b7397c275ff1ac8e

Last affected

3a13c520a00f379177c7c03ab7fe687c9d231b30

Last affected

1c72c04c16d4839aedf20555619ab0de1bbc1811

Last affected

33427dff6f705590a69fa7c4784f0c2202d7e2e5

Last affected

4ca3afe5c6a220d0aaee557d0a0bdbd3e1f25fce

Database specific

{
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "3.8.0"
        },
        {
            "last_affected": "4.0.0-alpha"
        },
        {
            "last_affected": "4.0.0-alpha2"
        },
        {
            "last_affected": "4.0.0-beta"
        },
        {
            "last_affected": "4.0.0-beta2"
        },
        {
            "last_affected": "4.0.0-rc"
        },
        {
            "last_affected": "4.0.0-rc2"
        }
    ],
    "cpe": [
        "cpe:2.3:a:bedita:bedita:*:*:*:*:*:*:*:*",
        "cpe:2.3:a:bedita:bedita:4.0.0:alpha:*:*:*:*:*:*",
        "cpe:2.3:a:bedita:bedita:4.0.0:alpha2:*:*:*:*:*:*",
        "cpe:2.3:a:bedita:bedita:4.0.0:beta:*:*:*:*:*:*",
        "cpe:2.3:a:bedita:bedita:4.0.0:beta2:*:*:*:*:*:*",
        "cpe:2.3:a:bedita:bedita:4.0.0:rc:*:*:*:*:*:*",
        "cpe:2.3:a:bedita:bedita:4.0.0:rc2:*:*:*:*:*:*"
    ],
    "source": [
        "CPE_RANGE",
        "CPE_STRING"
    ]
}

Affected versions

3.*

3.2.0

v3.*

v3.4.0

v3.6.0

v3.7.0

v3.8.0

v4.*

v4.0.0-RC

v4.0.0-RC2

v4.0.0-alpha

v4.0.0-alpha2

v4.0.0-beta

v4.0.0-beta2

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-15570.json"