{ "affected": [ { "ranges": [ { "database_specific": { "versions": [ { "introduced": "0" }, { "last_affected": "3.8.0" }, { "introduced": "0" }, { "last_affected": "4.0.0-alpha" }, { "introduced": "0" }, { "last_affected": "4.0.0-alpha2" }, { "introduced": "0" }, { "last_affected": "4.0.0-beta" }, { "introduced": "0" }, { "last_affected": "4.0.0-beta2" }, { "introduced": "0" }, { "last_affected": "4.0.0-rc" }, { "introduced": "0" }, { "last_affected": "4.0.0-rc2" } ] }, "events": [ { "introduced": "0" }, { "last_affected": "b590234892015471c148beda119f1d9f9afd067b" }, { "introduced": "0" }, { "last_affected": "60a64245bd304807d0d83078e412c01f3174a5c2" }, { "introduced": "0" }, { "last_affected": "158e1ad7805d1f2daeab2e96b7397c275ff1ac8e" }, { "introduced": "0" }, { "last_affected": "3a13c520a00f379177c7c03ab7fe687c9d231b30" }, { "introduced": "0" }, { "last_affected": "1c72c04c16d4839aedf20555619ab0de1bbc1811" }, { "introduced": "0" }, { "last_affected": "33427dff6f705590a69fa7c4784f0c2202d7e2e5" }, { "introduced": "0" }, { "last_affected": "4ca3afe5c6a220d0aaee557d0a0bdbd3e1f25fce" } ], "repo": "https://github.com/bedita/bedita", "type": "GIT" } ] } ], "details": "BEdita through 4.0.0-RC2 allows SQL injection during a save operation for a relation with parameters.", "id": "CVE-2019-15570", "modified": "2026-03-13T21:56:04.417067712Z", "published": "2019-08-26T15:15:12.703Z", "references": [ { "type": "FIX", "url": "https://github.com/bedita/bedita/pull/1608" } ], "severity": [ { "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" } ] }