Sql injection

2010-11-0921:00:00

PRIOn knowledge base

www.prio-n.com

8.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

43.7%

JSON

SQL injection vulnerability in IBM WebSphere Commerce 6.0 before 6.0.0.10 allows remote authenticated users to execute arbitrary SQL commands via unspecified parameters to “Commerce Organization Admin Console JavaServer pages.”

CPENameOperatorVersion
websphere_commerceeq6.0.0.7
websphere_commerceeq6.0.0.5
websphere_commerceeq6.0.0.2
websphere_commerceeq6.0.0.1
websphere_commerceeq6.0.0.8
websphere_commerceeq6.0.0.3
websphere_commerceeq6.0.0.4
websphere_commerceeq6.0.0.9
websphere_commerceeq6.0.0.6

Name	Operator	Version
websphere_commerce	eq	6.0.0.7
websphere_commerce	eq	6.0.0.5
websphere_commerce	eq	6.0.0.2
websphere_commerce	eq	6.0.0.1
websphere_commerce	eq	6.0.0.8
websphere_commerce	eq	6.0.0.3
websphere_commerce	eq	6.0.0.4
websphere_commerce	eq	6.0.0.9
websphere_commerce	eq	6.0.0.6