Lucene search
K

5 matches found

CVE
CVE
added 2010/11/26 7:0 p.m.42 views

CVE-2010-4298

The CVE-2010-4298 issue affects the Free Simple Software 1.0 download module, where the SQL injection flaw can be triggered via the downloads_id parameter in a download_now action to index.php. The connected Seebug entry provides a PoC exploit demonstrating how a UNION SELECT can extract sensitiv...

7.5CVSS8.4AI score0.00988EPSS
Exploits6References3Affected Software1
securityvulns
securityvulns
added 2010/11/24 12:0 a.m.43 views

'Free Simple Software' SQL Injection Vulnerability (CVE-2010-4298)

'Free Simple Software' SQL Injection Vulnerability CVE-2010-4298 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in the 'Free Simple Software' download module which allows for a 'UNION SELECT' to easily expose the application...

7.5CVSS7.1AI score0.02573EPSS
Exploits6
Exploit DB
Exploit DB
added 2010/11/24 12:0 a.m.33 views

Free Simple Software - SQL Injection

'Free Simple Software' SQL Injection Vulnerability CVE-2010-4298 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in the 'Free Simple Software' download module which allows for a 'UNION SELECT' to easily expose the application...

7.5CVSS6.4AI score0.00988EPSS
Exploits6
exploitpack
exploitpack
added 2010/11/24 12:0 a.m.81 views

Free Simple Software - SQL Injection

Free Simple Software - SQL Injection 'Free Simple Software' SQL Injection Vulnerability CVE-2010-4298 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in the 'Free Simple Software' download module which allows for a 'UNION...

7.5CVSS0.02573EPSS
Exploits6
Packet Storm
Packet Storm
added 2010/11/22 12:0 a.m.35 views

Free Simple Software SQL Injection

'Free Simple Software' SQL Injection Vulnerability CVE-2010-4298 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- A vulnerability exists in the 'Free Simple Software' download module which allows for a 'UNION SELECT' to easily expose the application...

7.5CVSS0.02573EPSS
Exploits6
Rows per page
Query Builder