Exploitation Summary
EIP tracks 1 public exploit for CVE-2015-10034. PoCs published by andrenasx.
AI-analyzed exploit summary This repository contains a vulnerable Java application demonstrating CVE-2015-10034, likely involving insecure direct object references or authentication bypass in the workout-organizer application. The code includes controllers and database interactions typical of a Play Framework application.
Description
A vulnerability has been found in j-nowak workout-organizer and classified as critical. This vulnerability affects unknown code. The manipulation leads to sql injection. The patch is identified as 13cd6c3d1210640bfdb39872b2bb3597aa991279. It is recommended to apply a patch to fix this issue. VDB-217714 is the identifier assigned to this vulnerability.
Exploits (1)
This repository contains a vulnerable Java application demonstrating CVE-2015-10034, likely involving insecure direct object references or authentication bypass in the workout-organizer application. The code includes controllers and database interactions typical of a Play Framework application.
References (3)
Scores
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L