CVE-2012-3881

2012-07-1219:00:00

mitre

www.cve.org

sql injection

rtg

remote attackers

AI Score

8.6

Confidence

Low

EPSS

0.001

Percentile

47.9%

JSON

Multiple SQL injection vulnerabilities in RTG 0.7.4 and RTG2 0.9.2 allow remote attackers to execute arbitrary SQL commands via unspecified parameters to (1) 95.php, (2) view.php, or (3) rtg.php.

References

www.openwall.com/lists/oss-security/2012/07/09/2

code.google.com/p/rtg2/issues/detail?id=35