Sql injection

2008-09-0516:08:00

PRIOn knowledge base

www.prio-n.com

9.1 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

42.1%

JSON

SQL injection vulnerability in admin/users/self-2.php in XRMS allows remote attackers to execute arbitrary SQL commands and modify name and email fields via unspecified vectors.

CPENameOperatorVersion
xrms_crmeq1.99.2

CPE	Name	Operator	Version
	xrms_crm	eq	1.99.2

References

securityreason.com/securityalert/4229

www.securityfocus.com/archive/1/495981/100/0/threaded

www.securityfocus.com/bid/31008

exchange.xforce.ibmcloud.com/vulnerabilities/45048