Lucene search
Japan Vulnerability NotesJVN:84982142HistoryOct 09, 2015 - 12:00 a.m.
JVN#84982142: Pref Shimane CMS vulnerable to SQL injection
2015-10-0900:00:00
Japan Vulnerability Notes
jvn.jp
15
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
69.4%
Pref Shimane CMS is an open-source Contents Management System (CMS). Pref Shimane CMS contains an SQL injection vulnerability.
Impact
A logged in attacker may execute arbitrary SQL statements.
Solution
Update the Software
Update to the latest version according to the information provided by the developer.
Products Affected
- Pref Shimane CMS versions 2.0.0
According to the developer, Pref Shimane CMS versions 1.x are not affected by this vulnerability.
Related
cvelist
cvelist
CVE-2015-5659
2015-10-11 01:00:00
nvd
nvd
CVE-2015-5659
2015-10-11 01:59:04
cve
cve
CVE-2015-5659
2015-10-11 01:59:04
prion
prion
Sql injection
2015-10-11 01:59:00
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
69.4%
Related for JVN:84982142