CVE-2010-1094

2010-03-2417:00:00

mitre

www.cve.org

8.4 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

37.7%

JSON

SQL injection vulnerability in news.php in DZ EROTIK Auktionshaus V4rgo allows remote attackers to execute arbitrary SQL commands via the id parameter.

References

4004securityproject.wordpress.com/2010/02/26/dz-erotik-auktionshaus-v-4-rgo-news-php-sql-injection/

osvdb.org/62623

secunia.com/advisories/38792

www.exploit-db.com/exploits/11582

exchange.xforce.ibmcloud.com/vulnerabilities/56581