CVE-2010-5041

2011-11-0221:00:00

mitre

www.cve.org

AI Score

8.4

Confidence

Low

EPSS

0.005

Percentile

77.3%

JSON

SQL injection vulnerability in index.php in the NP_Gallery plugin 0.94 for Nucleus allows remote attackers to execute arbitrary SQL commands via the id parameter in a plugin action.

References

secunia.com/advisories/40022

www.exploit-db.com/exploits/12787/

www.osvdb.org/65005

www.securityfocus.com/bid/40448

www.vupen.com/english/advisories/2010/1285

exchange.xforce.ibmcloud.com/vulnerabilities/58997