Lucene search
HistoryDec 24, 2013 - 10:55 p.m.
CVE-2013-7216
cve
sql injection
classifieds creator 2.0
security vulnerability
nvd
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.8 High
AI Score
Confidence
Low
0.02 Low
EPSS
Percentile
89.0%
Multiple SQL injection vulnerabilities in Classifieds Creator 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) ID parameter to demo/classifieds/product.asp, or (2) UserID or (3) Password field to demo/classifieds/admin.asp.
Affected configurations
Node
etoshopclassifieds_creatorMatch2.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| etoshop:classifieds_creator | etoshop classifieds creator | eq | 2.0 |
Related
prion
prion
Sql injection
2013-12-24 22:55:00
cvelist
cvelist
CVE-2013-7216
2013-12-24 22:00:00
nvd
nvd
CVE-2013-7216
2013-12-24 22:55:03
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.8 High
AI Score
Confidence
Low
0.02 Low
EPSS
Percentile
89.0%
Related for CVE-2013-7216