Sql injection

2006-06-0620:06:00

PRIOn knowledge base

www.prio-n.com

9 High

AI Score

Confidence

Low

0.079 Low

EPSS

Percentile

94.3%

JSON

SQL injection vulnerability in saphplesson 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) forumid parameter in add.php and (2) lessid parameter in show.php.

CPENameOperatorVersion
saphplessoneq2.0

CPE	Name	Operator	Version
	saphplesson	eq	2.0

References

securityreason.com/securityalert/1047

www.securityfocus.com/archive/1/435202/100/0/threaded

www.securityfocus.com/archive/1/440120

www.securityfocus.com/archive/1/472798/100/0/threaded

www.securityfocus.com/bid/18117

www.securityfocus.com/bid/18934

exchange.xforce.ibmcloud.com/vulnerabilities/26757