Lucene search

CVE-2013-10017

🗓️ 04 Feb 2023 00:08:15Reported by VulDBType

cve🔗 web.nvd.nist.gov👁 35 Views🌐 WEB

Critical SQL injection vulnerability in fanzila WebFinance 0.5

Reporter	Title	Published	Views	Family All 4
Prion	Sql injection	4 Feb 202300:15	–	prion
Vulnrichment	CVE-2013-10017 fanzila WebFinance save_roles.php sql injection	3 Feb 202323:57	–	vulnrichment
Cvelist	CVE-2013-10017 fanzila WebFinance save_roles.php sql injection	3 Feb 202323:57	–	cvelist
NVD	CVE-2013-10017	4 Feb 202300:15	–	nvd

Nvd

Vulners

Node

webfinance_project webfinanceMatch0.5

[
  {
    "vendor": "fanzila",
    "product": "WebFinance",
    "versions": [
      {
        "version": "0.5",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/fanzila/WebFinance/commit/6cfeb2f6b35c1b3a7320add07cd0493e4f752af3
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/

Parameter	Position	Path	Description	CWE
id	query param	/htdocs/admin/save_roles.php	SQL injection vulnerability in the save_roles.php file due to improper handling of the 'id' parameter.	CWE-89

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

04 Feb 2023 00:15Current

7.1High risk

Vulners AI Score7.1

CVSS25.2

CVSS35.5 - 9.8

EPSS0.00173

SSVC

CWE-89