Lucene search
HistoryApr 09, 2010 - 6:30 p.m.
CVE-2010-1346
cve-2010-1346
sql injection
admin login
mini cms ribafs
vulnerability
remote attackers
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.7 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
49.0%
SQL injection vulnerability in admin/login.php in Mini CMS RibaFS 1.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the login parameter. NOTE: some of these details are obtained from third party information.
Affected configurations
Node
ribafsmini_cms_ribafsMatch1.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| ribafs:mini_cms_ribafs | ribafs mini cms ribafs | eq | 1.0 |
Related
nvd
nvd
CVE-2010-1346
2010-04-09 18:30:00
prion
prion
Sql injection
2010-04-09 18:30:00
cvelist
cvelist
CVE-2010-1346
2010-04-09 18:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.7 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
49.0%
Related for CVE-2010-1346