Sql injection

2012-10-2223:55:00

PRIOn knowledge base

www.prio-n.com

9.3 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

73.6%

JSON

SQL injection vulnerability in admin/index.php in Subrion CMS 2.0.4 allows remote attackers to execute arbitrary SQL commands via the (1) user name or (2) password field.

CPENameOperatorVersion
subrion_cmseq2.0.4

CPE	Name	Operator	Version
	subrion_cms	eq	2.0.4

References

epsilonlambda.wordpress.com/2011/06/11/subrion-cms-multiple-vulnerabilities/

secunia.com/advisories/44917

www.osvdb.org/72890

www.securityfocus.com/bid/48224

www.exploit-db.com/exploits/17390