CVE-2010-0614 in evalSMSIالمعلومات

الملخص

بحسب MITRE

SQL injection vulnerability in ajax.php in evalSMSI 2.1.03 allows remote attackers to execute arbitrary SQL commands via the query parameter in the (1) question action, and possibly the (2) sub_par or (3) num_quest actions.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

حجز

11/02/2010

إفشاء

11/02/2010

الاعتدال

تمت الموافقة

إدخال

VDB-51826

CPE

جاهز

CWE

CWE-89 (مؤكد)

استغلال

تحميل

CVSS

7.5 (NVD)

EPSS

0.01027

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2010-0614
NVD	https://nvd.nist.gov/vuln/detail/CVE-2010-0614
CVE Details	https://www.cvedetails.com/cve/CVE-2010-0614/

التالي ▸نظرة عامة ◂ السابق

Do you know our Splunk app?

Download it now for free!