CVE-2016-2555 in ATutorinfo

Zusammenfassung

von MITRE

SQL injection vulnerability in include/lib/mysql_connect.inc.php in ATutor 2.2.1 allows remote attackers to execute arbitrary SQL commands via the searchFriends function to friends.inc.php.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

24.02.2016

Veröffentlichung

13.04.2017

Moderieren

akzeptiert

Eintrag

VDB-99815

CPE

bereit

CWE

CWE-89 (bestätigt)

Exploit

Download

CVSS

9.8 (NVD)

EPSS

0.81579

KEV

nein

Aktivitäten

very low

Sektor

Education, Police

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-2555
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-2555
CVE Details	https://www.cvedetails.com/cve/CVE-2016-2555/

◂ Zurück Übersicht Weiter ▸

Want to know what is going to be exploited?

We predict KEV entries!