Total vulnerabilities in the database
SQL injection vulnerability in repository/repository_attachment.php in AlienVault Open Source Security Information Management (OSSIM) 2.1.5, and possibly other versions before 2.1.5-4, allows remote attackers to execute arbitrary SQL commands via the id_document parameter.
| Software | From | Fixed in |
|---|---|---|
| alienvault / open_source_security_information_management | 2.1.5-3 | 2.1.5-3.x |
| alienvault / open_source_security_information_management | 2.1.5-2 | 2.1.5-2.x |
| alienvault / open_source_security_information_management | 2.1.5-1 | 2.1.5-1.x |
| alienvault / open_source_security_information_management | 2.1.5 | 2.1.5.x |