CVE-2010-0611

2010-02-1117:00:00

mitre

www.cve.org

8.7 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

27.8%

JSON

Multiple SQL injection vulnerabilities in adminlogin.php in Baal Systems 3.8 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.

References

packetstormsecurity.org/1002-exploits/baalsystems-sql.txt

www.exploit-db.com/exploits/11346

www.securityfocus.com/bid/38139

exchange.xforce.ibmcloud.com/vulnerabilities/56147