Lucene search
HistoryOct 09, 2011 - 10:55 a.m.
CVE-2010-4935
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.4
Confidence
Low
EPSS
0.001
Percentile
33.0%
SQL injection vulnerability in poll.php in Entrans 0.3.2 and earlier allows remote attackers to execute arbitrary SQL commands via the sid parameter.
Affected configurations
Node
khader_abbebentransRange≤0.3.2
ORkhader_abbebentransMatch0.1.1
ORkhader_abbebentransMatch0.2
ORkhader_abbebentransMatch0.3
ORkhader_abbebentransMatch0.3.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| khader_abbeb | entrans | * | cpe:2.3:a:khader_abbeb:entrans:*:*:*:*:*:*:*:* |
| khader_abbeb | entrans | 0.1.1 | cpe:2.3:a:khader_abbeb:entrans:0.1.1:*:*:*:*:*:*:* |
| khader_abbeb | entrans | 0.2 | cpe:2.3:a:khader_abbeb:entrans:0.2:*:*:*:*:*:*:* |
| khader_abbeb | entrans | 0.3 | cpe:2.3:a:khader_abbeb:entrans:0.3:*:*:*:*:*:*:* |
| khader_abbeb | entrans | 0.3.1 | cpe:2.3:a:khader_abbeb:entrans:0.3.1:*:*:*:*:*:*:* |
References
Related
prion
prion
Sql injection
2011-10-09 10:55:00
exploitdb
exploitdb
Entrans - SQL Injection
2010-09-27 00:00:00
cvelist
cvelist
CVE-2010-4935
2011-10-09 10:00:00
cve
cve
CVE-2010-4935
2011-10-09 10:55:21
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.4
Confidence
Low
EPSS
0.001
Percentile
33.0%
Related for NVD:CVE-2010-4935