CVE-2013-7193 in C2C Forward Auction Creatorinformation

Résumé (Anglaise)

Multiple SQL injection vulnerabilities in C2C Forward Auction Creator 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) pa parameter to auction/asp/list.asp, or the (2) UserID or (3) Password to auction/casp/admin.asp.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Réserver

20/12/2013

Divulgation

20/12/2013

Statut

Confirmé

Entrées

VulDB provides additional information and datapoints for this CVE:

IDVulnérabilitéCWEExpConCVE
65848Etoshop C2C Forward Auction Creator injection SQL89ÉlevéUnavailableCVE-2013-7193

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

Sources

PrécédentAperçuSuivant

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!