CVE-2010-1054

2010-03-2317:00:00

mitre

www.cve.org

8.5 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

35.2%

JSON

Multiple SQL injection vulnerabilities in ParsCMS allow remote attackers to execute arbitrary SQL commands via the RP parameter to (1) fa_default.asp and (2) en_default.asp.

References

osvdb.org/62999

osvdb.org/63000

packetstormsecurity.org/1003-exploits/parscms-sql.txt

secunia.com/advisories/39007

www.securityfocus.com/archive/1/510066/100/0/threaded

www.securityfocus.com/bid/38734