Lucene search

K

PRIOn knowledge basePRION:CVE-2010-4006

HistoryNov 03, 2010 - 8:00 p.m.

Sql injection

2010-11-0320:00:00

PRIOn knowledge base

www.prio-n.com

2

9.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

41.2%

Multiple SQL injection vulnerabilities in search.php in WSN Links 5.0.x before 5.0.81, 5.1.x before 5.1.51, and 6.0.x before 6.0.1 allow remote attackers to execute arbitrary SQL commands via the (1) namecondition or (2) namesearch parameter.

CPENameOperatorVersion
linkseq5.1.25
linkseq5.1.34
linkseq5.1.26
linkseq5.1.3
linkseq5.1.19
linkseq5.1.30
linkseq5.1.20
linkseq5.1.31
linkseq5.1.29
linkseq5.1.27

Rows per page:

1-10 of 1321

References

archives.neohapsis.com/archives/fulldisclosure/2010-10/0512.html

www.securityfocus.com/archive/1/514585/100/0/threaded

www.securityfocus.com/bid/44593

www.uncompiled.com/2010/10/wsn-links-sql-injection-vulnerability-cve-2010-4006/

exchange.xforce.ibmcloud.com/vulnerabilities/62939

www.exploit-db.com/exploits/15607

9.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

41.2%

Related for PRION:CVE-2010-4006

exploitpack1 myhack581 securityvulns2 packetstorm1 cve1 seebug1 exploitdb1