cbcvebase.
CVE-2014-7176
published 2014-11-04

CVE-2014-7176: SQL injection vulnerability in Enalean Tuleap before 7.5.99.4 allows remote authenticated users to execute arbitrary SQL commands via the lobal_txt parameter…

PriorityP340medium6.5CVSS 2.0
AVNACLAuSCPIPAP
EXPLOIT
EPSS
2.20%
80.3th percentile
SQL injection vulnerability in Enalean Tuleap before 7.5.99.4 allows remote authenticated users to execute arbitrary SQL commands via the lobal_txt parameter to plugins/docman.

Affected

1 ranges
VendorProductVersion rangeFixed in
enaleantuleap<= 7.5
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.