Lucene search
CVE-2013-5121
SQL injection in PHPFox before 3.6.0 allows remote attackers to execute arbitrary SQL commands
Show more
| Reporter | Title | Published | Views | Family All 3 |
|---|---|---|---|---|
 | CVE-2013-5121 | 14 Aug 201315:00 | – | cvelist |
 | Sql injection | 14 Aug 201315:55 | – | prion |
 | CVE-2013-5121 | 14 Aug 201315:55 | – | nvd |
| Source | Link |
|---|---|
| archives | www.archives.neohapsis.com/archives/bugtraq/2013-08/0048.html |
| securityfocus | www.securityfocus.com/bid/61660 |
| exploit-db | www.exploit-db.com/exploits/27430 |
| osvdb | www.osvdb.org/96028 |
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| search[sort_by] | query param | user/browse/view_/ | SQL injection vulnerability via search[sort_by] parameter in PHPFox. | CWE-89 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo14 Aug 2013 15:55Current
8.7High risk
Vulners AI Score8.7
CVSS27.5
EPSS0.00196