Sql injection

2008-07-2418:41:00

PRIOn knowledge base

www.prio-n.com

9.1 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

37.5%

JSON

SQL injection vulnerability in index.php in AproxEngine (aka Aprox CMS Engine) 5.1.0.4 allows remote attackers to execute arbitrary SQL commands via the id parameter.

CPENameOperatorVersion
aprox_cms_engineeq5.1.0.4
aproxengineeq5.1.0.4

CPE	Name	Operator	Version
	aprox_cms_engine	eq	5.1.0.4
	aproxengine	eq	5.1.0.4

References

securityreason.com/securityalert/4032

www.aprox.de/index.php?id=001

www.securityfocus.com/bid/30295

exchange.xforce.ibmcloud.com/vulnerabilities/43905

www.exploit-db.com/exploits/6098