CNNVD-202601-1160 Information
CNNVD ID
CNNVD-202601-1160
Related CVE
- CNNVD Published: 2026-01-07
Description (Chinese)
Tarkov Data Manager是The Hideout开源的一个数据库管理工具。 Tarkov Data Manager 9bdb3a75a98a7047b6d70144eb1da1655d6992a8之前版本存在SQL注入漏洞,该漏洞源于webhook编辑和扫描器API端点存在基于时间的盲SQL注入,可能导致执行任意SQL查询。
Description (English)
Tarkov Data Manager is a database management tool for The Hideout Open Source. Tarkov Data Manager 9bdb3a75a98a7a7047b6d70144eb1da1655d6992a8 had an injection loophole in SQL, which originated from the time-based blind SQL injection of the webbook editor and scanner API endpoint, which could lead to any SQL queries.
Hazard Level
Medium
Vulnerability Type
SQL注入
Affected Vendor
The Hideout
Published
2026-01-07
Last Modified
2026-02-24
References
https://github.com/the-hideout/tarkov-data-manager/commit/9bdb3a75a98a7047b6d70144eb1da1655d6992a8 https://github.com/the-hideout/tarkov-data-manager/security/advisories/GHSA-4gcx-ghwc-rc78
Patch
https://github.com/the-hideout/tarkov-data-manager
Share on: