Sql injection

2007-09-2021:17:00

PRIOn knowledge base

www.prio-n.com

9.1 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

54.9%

SQL injection vulnerability in userreviews.php in OneCMS 2.4 allows remote attackers to execute arbitrary SQL commands via the abc parameter.

CPENameOperatorVersion
onecmseq2.4

CPE	Name	Operator	Version
	onecms	eq	2.4

References

osvdb.org/37163

secunia.com/advisories/26902

www.securityfocus.com/bid/25741

exchange.xforce.ibmcloud.com/vulnerabilities/36705

www.exploit-db.com/exploits/4433