Lucene search

K
cve[email protected]CVE-2011-5201
HistorySep 23, 2012 - 5:55 p.m.

CVE-2011-5201

2012-09-2317:55:01
CWE-89
web.nvd.nist.gov
18
cve-2011-5201
sql injection
remote attack
security vulnerability
tinyguestbook

8.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

79.4%

Multiple SQL injection vulnerabilities in sign.php in tinyguestbook allow remote attackers to execute arbitrary SQL commands via the (1) name and (2) msg parameters. NOTE: some of these details are obtained from third party information.

Affected configurations

NVD
Node
steveyolamtinyguestbookMatch10.2010

8.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

79.4%

Related for CVE-2011-5201