CVE-2010-0954

2010-03-0920:00:00

mitre

www.cve.org

AI Score

8.4

Confidence

Low

EPSS

0.002

Percentile

61.3%

JSON

SQL injection vulnerability in search_result.asp in Pre Projects Pre E-Learning Portal allows remote attackers to execute arbitrary SQL commands via the course_ID parameter.

References

evilc0de.blogspot.com/2010/03/pre-e-learning-portal-sql-injection.html

osvdb.org/62774

secunia.com/advisories/38891

www.packetstormsecurity.com/1003-exploits/preelearningportal-sql.txt

www.securityfocus.com/bid/38582

exchange.xforce.ibmcloud.com/vulnerabilities/56729