CVE-2010-4796

2011-04-2700:00:00

mitre

www.cve.org

AI Score

8.5

Confidence

Low

EPSS

0.001

Percentile

49.0%

JSON

Multiple SQL injection vulnerabilities in PHPYun 1.1.6 allow remote attackers to execute arbitrary SQL commands via the (1) provinceid parameter to search.php and the (2) e parameter to resumeview.php.

References

bbs.wolvez.org/viewtopic.php?id=172

secunia.com/advisories/41756

www.securityfocus.com/bid/43907

exchange.xforce.ibmcloud.com/vulnerabilities/62391