A SQL injection vulnerability in Redmine through 3.2.9 and 3.3.x before 3.3.10 allows Redmine users to access protected information via a crafted object query.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-05T02:02:39.820Z
Reserved: 2019-11-12T00:00:00
Link: CVE-2019-18890

No data.

Status : Modified
Published: 2019-11-21T18:15:11.883
Modified: 2024-11-21T04:33:47.427
Link: CVE-2019-18890

No data.