CVE-2016-15034
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Jul 10, 2023
Updated: May 17, 2024
CWE ID 89
Summary
CVE-2016-15034 is a critical vulnerability affecting Dynacase Webdesk. The issue lies within the freedomrss_search function of freedomrss_search.php, which is prone to SQL injection. This manipulation can lead to unauthorized access or data theft. To remedy this, upgrading to version 3.2-20180305 is recommended. The patch for the vulnerability is identified as 750a9b35af182950c952faf6ddfdcc50a2b25f8b. It is strongly advised to apply the update as soon as possible to protect against potential exploitation. (VDB-233366)
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share