Sql injection

2007-07-1000:30:00

PRIOn knowledge base

www.prio-n.com

9.1 High

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

82.7%

JSON

SQL injection vulnerability in index.php in GameSiteScript (gss) 3.1 and earlier allows remote attackers to execute arbitrary SQL commands via the params parameter, related to missing input validation of the id field.

CPENameOperatorVersion
gamesitescriptle3.1

CPE	Name	Operator	Version
	gamesitescript	le	3.1

References

osvdb.org/36362

secunia.com/advisories/25983

www.securityfocus.com/bid/24807

www.vupen.com/english/advisories/2007/2460

exchange.xforce.ibmcloud.com/vulnerabilities/35292

www.exploit-db.com/exploits/4159