WEB APPLICATION VULNERABILITIES Standard & Premium

Sqlite Improper Input Validation Vulnerability (CVE-2016-6153)

Description

os_unix.c in SQLite before 3.13.0 improperly implements the temporary directory search algorithm, which might allow local users to obtain sensitive information, cause a denial of service (application crash), or have unspecified other impact by leveraging use of the current working directory for temporary files.

Remediation

References

Related Vulnerabilities

WordPress 4.9.x Multiple Vulnerabilities (4.9 - 4.9.18)

Drupal Other Vulnerability (CVE-2005-3975)

WordPress Plugin Rate my Post-WP Rating System Cross-Site Scripting (3.3.8)

WordPress Plugin Backlink Rechecker Multiple Cross-Site Scripting Vulnerabilities (1.2.1)

Roundcube Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2009-4076)

Severity

Medium

Classification

CVE-2016-6153 CWE-20 CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Tags

Missing Update Known Vulnerabilities