CVE-2013-7262

🗓️ 05 Jan 2014 20:00:00Reported by mitreType

cve

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 62 Views

CVE-2013-7262 SQL injection vulnerability in msPostGISLayerSetTimeFilter function in MapServer before 6.4.

Reporter	Title	Published	Views	Family All 18
Cvelist	CVE-2013-7262	5 Jan 201420:00	–	cvelist
Debian CVE	CVE-2013-7262	5 Jan 201420:00	–	debiancve
EUVD	EUVD-2013-7040	7 Oct 202500:30	–	euvd
Fedora	[SECURITY] Fedora 21 Update: mapserver-6.2.2-1.fc21	19 Mar 201518:39	–	fedora
Fedora	[SECURITY] Fedora 20 Update: mapserver-6.2.2-1.fc20	19 Mar 201518:42	–	fedora
Tenable Nessus	Fedora 20 : mapserver-6.2.2-1.fc20 (2014-17559)	20 Mar 201500:00	–	nessus
Tenable Nessus	Fedora 21 : mapserver-6.2.2-1.fc21 (2014-17567)	20 Mar 201500:00	–	nessus
Tenable Nessus	MapServer < 5.6.9 / 6.0.4 / 6.2.2 / 6.4.1 SQL Injection	22 Jan 201400:00	–	nessus
Mageia	Updated mapserver packages fix CVE-2013-7262 and packaging issues	6 Mar 201518:08	–	mageia
NVD	CVE-2013-7262	5 Jan 201420:55	–	nvd

NVD

Node

osgeo mapserverRange≤6.4.0

OR

osgeo mapserverMatch4.2.0beta1

OR

osgeo mapserverMatch4.4.0

OR

osgeo mapserverMatch4.4.0beta1

OR

osgeo mapserverMatch4.4.0beta2

OR

osgeo mapserverMatch4.4.0beta3

OR

osgeo mapserverMatch4.6.0

OR

osgeo mapserverMatch4.6.0beta1

OR

osgeo mapserverMatch4.6.0beta2

OR

osgeo mapserverMatch4.6.0beta3

OR

osgeo mapserverMatch4.6.0rc1

OR

osgeo mapserverMatch4.8.0beta1

OR

osgeo mapserverMatch4.8.0beta2

OR

osgeo mapserverMatch4.8.0beta3

OR

osgeo mapserverMatch4.8.0rc1

OR

osgeo mapserverMatch4.8.0rc2

OR

osgeo mapserverMatch4.10.0

OR

osgeo mapserverMatch4.10.0beta1

OR

osgeo mapserverMatch4.10.0beta2

OR

osgeo mapserverMatch4.10.0beta3

OR

osgeo mapserverMatch4.10.0rc1

OR

osgeo mapserverMatch4.10.1

OR

osgeo mapserverMatch4.10.2

OR

osgeo mapserverMatch4.10.3

OR

osgeo mapserverMatch4.10.4

OR

osgeo mapserverMatch4.10.5

OR

osgeo mapserverMatch5.0.0

OR

osgeo mapserverMatch5.0.0beta1

OR

osgeo mapserverMatch5.0.0beta2

OR

osgeo mapserverMatch5.0.0beta3

OR

osgeo mapserverMatch5.0.0beta4

OR

osgeo mapserverMatch5.0.0beta5

OR

osgeo mapserverMatch5.0.0beta6

OR

osgeo mapserverMatch5.0.0rc1

OR

osgeo mapserverMatch5.0.0rc2

OR

osgeo mapserverMatch5.2.0

OR

osgeo mapserverMatch5.2.0beta1

OR

osgeo mapserverMatch5.2.0beta2

OR

osgeo mapserverMatch5.2.0beta3

OR

osgeo mapserverMatch5.2.0beta4

OR

osgeo mapserverMatch5.2.0rc1

OR

osgeo mapserverMatch5.2.1

OR

osgeo mapserverMatch5.4.0

OR

osgeo mapserverMatch5.4.0beta1

OR

osgeo mapserverMatch5.4.0beta2

OR

osgeo mapserverMatch5.4.0beta3

OR

osgeo mapserverMatch5.4.0beta4

OR

osgeo mapserverMatch5.4.0rc1

OR

osgeo mapserverMatch5.4.0rc2

OR

osgeo mapserverMatch5.4.1

OR

osgeo mapserverMatch5.4.2

OR

osgeo mapserverMatch5.6.0

OR

osgeo mapserverMatch5.6.1

OR

osgeo mapserverMatch5.6.3

OR

osgeo mapserverMatch6.0.1

OR

osgeo mapserverMatch6.0.2

OR

osgeo mapserverMatch6.0.3

OR

osgeo mapserverMatch6.2.0

OR

osgeo mapserverMatch6.2.1

OR

umn mapserverMatch5.2.3

OR

umn mapserverMatch5.6.7

OR

umn mapserverMatch6.0.0

Source	Link
github	www.github.com/mapserver/mapserver/issues/4834
github	www.github.com/mapserver/mapserver/commit/3a10f6b829297dae63492a8c63385044bc6953ed
mapserver	www.mapserver.org/development/changelog/changelog-6-4.html
securityfocus	www.securityfocus.com/bid/64671

29 Apr 2026 01:13Current

8.2High risk

Vulners AI Score8.2

CVSS 26.8

EPSS0.00185

cve-2013-7262 sql injection mspostgislayersettimefilter mapserver nvd vulnerability wms-time service remote attackers arbitrary sql commands