Lucene search

K
cve[email protected]CVE-2011-5216
HistoryOct 25, 2012 - 5:55 p.m.

CVE-2011-5216

2012-10-2517:55:03
CWE-89
web.nvd.nist.gov
79
cve-2011-5216
sql injection
ajax.php
scorm cloud
wordpress
remote code execution

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.7 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.2%

SQL injection vulnerability in ajax.php in SCORM Cloud For WordPress plugin before 1.0.7 for WordPress allows remote attackers to execute arbitrary SQL commands via the active parameter. NOTE: some of these details are obtained from third party information.

Affected configurations

NVD
Node
troyefscorm_cloudRange1.0.6.6
OR
troyefscorm_cloudMatch1.0
OR
troyefscorm_cloudMatch1.0.1
OR
troyefscorm_cloudMatch1.0.2
OR
troyefscorm_cloudMatch1.0.3
OR
troyefscorm_cloudMatch1.0.4
OR
troyefscorm_cloudMatch1.0.5
OR
troyefscorm_cloudMatch1.0.6
OR
troyefscorm_cloudMatch1.0.6.1
OR
troyefscorm_cloudMatch1.0.6.2
OR
troyefscorm_cloudMatch1.0.6.3
OR
troyefscorm_cloudMatch1.0.6.4
OR
troyefscorm_cloudMatch1.0.6.5
AND
wordpresswordpressMatch-

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.7 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

78.2%

Related for CVE-2011-5216