Sql injection

2013-01-2401:55:00

PRIOn knowledge base

www.prio-n.com

9.2 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.0%

JSON

SQL injection vulnerability in mods/hours/data/get_hours.php in PHP Volunteer Management 1.0.2 allows remote attackers to execute arbitrary SQL commands via the id parameter.

CPENameOperatorVersion
php_volunteer_managementeq1.0.2

CPE	Name	Operator	Version
	php_volunteer_management	eq	1.0.2

References

archives.neohapsis.com/archives/bugtraq/2012-04/0206.html

secunia.com/advisories/48988

www.osvdb.org/81494

www.securityfocus.com/bid/53261

www.exploit-db.com/exploits/18788