Title: SQL injection vulnerability in multiple files · Advisory · anuko/timetracker · GitHub
Open Graph Title: SQL injection vulnerability in multiple files
X Title: SQL injection vulnerability in multiple files
Description: GitHub is where people build software. More than 150 million people use GitHub to discover, fork, and contribute to over 420 million projects.
Open Graph Description: ### Impact SQL injection vulnerability existed in multiple files in Time Tracker version 1.19.33.5606 and prior due to not properly checking of the "group" and "status" parameters in POST requests...
X Description: ### Impact SQL injection vulnerability existed in multiple files in Time Tracker version 1.19.33.5606 and prior due to not properly checking of the "group" and "status" paramet...
X: @github
Domain: patch-diff.githubusercontent.com
| route-pattern | /:user_id/:repository/security/advisories/:id(.:format) |
| route-controller | repos_advisories |
| route-action | show |
| fetch-nonce | v2:4cbc4294-833e-b482-2ab2-707b89a6913d |
| current-catalog-service-hash | 8025d6f2cc71a72e813fbf424d385277e1fd1993701fcc4bad786191fb829e54 |
| request-id | B5FC:365490:151ABD7:1DB5AC5:69971B56 |
| html-safe-nonce | 3ceeba328272685da4551c296110cd8e7babbcd57a0a5bf3ce5bab4b8b069ff5 |
| visitor-payload | eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJCNUZDOjM2NTQ5MDoxNTFBQkQ3OjFEQjVBQzU6Njk5NzFCNTYiLCJ2aXNpdG9yX2lkIjoiNzM2MjM4MDIyNDE0NjExOTUxMCIsInJlZ2lvbl9lZGdlIjoiaWFkIiwicmVnaW9uX3JlbmRlciI6ImlhZCJ9 |
| visitor-hmac | 83284ba1aab51ea7844da31ae2519f02dc584bea60af1ff04be978eb4962f6a6 |
| hovercard-subject-tag | repository:52737866 |
| github-keyboard-shortcuts | repository,copilot |
| google-site-verification | Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I |
| octolytics-url | https://collector.github.com/github/collect |
| analytics-location | / |
| fb:app_id | 1401488693436528 |
| apple-itunes-app | app-id=1477376905, app-argument=https://github.com/anuko/timetracker/security/advisories/GHSA-wx6x-6rq3-pqcc |
| twitter:image | https://opengraph.githubassets.com/d033864a4e0502b144c30fab56fff8836decd8c27f3b3230b9a90d01d45aff7d/anuko/timetracker/security/advisories/GHSA-wx6x-6rq3-pqcc |
| twitter:card | summary_large_image |
| og:image | https://opengraph.githubassets.com/d033864a4e0502b144c30fab56fff8836decd8c27f3b3230b9a90d01d45aff7d/anuko/timetracker/security/advisories/GHSA-wx6x-6rq3-pqcc |
| og:image:alt | ### Impact SQL injection vulnerability existed in multiple files in Time Tracker version 1.19.33.5606 and prior due to not properly checking of the "group" and "status" parameters in POST requests... |
| og:image:width | 1200 |
| og:image:height | 600 |
| og:site_name | GitHub |
| og:type | object |
| hostname | github.com |
| expected-hostname | github.com |
| None | 7e6af791057690a60ffd9f5bb19a1e7b7637429945357211e6d6d09f15f081ae |
| turbo-cache-control | no-preview |
| turbo-body-classes | logged-out env-production page-responsive |
| disable-turbo | false |
| browser-stats-url | https://api.github.com/_private/browser/stats |
| browser-errors-url | https://api.github.com/_private/browser/errors |
| release | a8e66f4dd4c3390d4f6cbc2473146f1848b2971f |
| ui-target | full |
| theme-color | #1e2327 |
| color-scheme | light dark |
Links:
Viewport: width=device-width