8.7 High
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
76.5%
Multiple SQL injection vulnerabilities in MetaBid Auctions allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password fields in logIn.asp, or (3) intAuctionID parameter to item.asp.
digitalparadox.org/advisories/metabid.txt
marc.info/?l=bugtraq&m=111454192928364&w=2
secunia.com/advisories/15136
www.osvdb.org/15868
www.osvdb.org/15869
www.securityfocus.com/bid/13395
exchange.xforce.ibmcloud.com/vulnerabilities/20286