Sql injection

2006-06-0620:06:00

PRIOn knowledge base

www.prio-n.com

9.1 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.5%

SQL injection vulnerability in index.php in xueBook 1.0 allows remote attackers to execute arbitrary SQL commands via the start parameter.

CPENameOperatorVersion
xuebookeq1.0

CPE	Name	Operator	Version
	xuebook	eq	1.0

References

downloads.securityfocus.com/vulnerabilities/exploits/xueBook_poc.txt

secunia.com/advisories/20511

www.securityfocus.com/bid/18262

www.vupen.com/english/advisories/2006/2212

exchange.xforce.ibmcloud.com/vulnerabilities/27002