CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
89.5%
SQL injection vulnerability in tr1.php in YourFreeWorld.com Stylish Text Ads Script allows remote attackers to execute arbitrary SQL commands via the id parameter, possibly involving an attack vector using advertise.php.
Vendor | Product | Version | CPE |
---|---|---|---|
yourfreeworld | stylish_text_ads_script | * | cpe:2.3:a:yourfreeworld:stylish_text_ads_script:*:*:*:*:*:*:*:* |
secunia.com/advisories/20213
securityreason.com/securityalert/931
www.osvdb.org/25691
www.osvdb.org/25692
www.securityfocus.com/archive/1/434527/100/0/threaded
www.securityfocus.com/bid/18044
www.vupen.com/english/advisories/2006/1897
exchange.xforce.ibmcloud.com/vulnerabilities/26569
exchange.xforce.ibmcloud.com/vulnerabilities/26570