CVE-2011-1556

2011-04-0121:00:00

mitre

www.cve.org

8.4 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

61.4%

JSON

SQL injection vulnerability in plugins/pdfClasses/pdfgen.php in Andy’s PHP Knowledgebase (Aphpkb) 0.95.4 allows remote attackers to execute arbitrary SQL commands via the pdfa parameter.

References

secunia.com/advisories/43879

www.autosectools.com/Advisories/Andy%27s.PHP.Knowledgebase.Project.0.95.4_SQL.Injection_161.html

www.exploit-db.com/exploits/17061/

www.osvdb.org/71287

www.vupen.com/english/advisories/2011/0823

exchange.xforce.ibmcloud.com/vulnerabilities/66386