Lucene search
K

4 matches found

NVD
NVD
added 2010/12/08 5:0 p.m.14 views

CVE-2010-4500

Multiple SQL injection vulnerabilities in contact.php in MRCGIGUY MCG FreeTicket 1.0.0, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 name, 2 email, 3 subject, and 4 message parameters in a sendmess action. NOTE: the provenance of this...

6.8CVSS8.2AI score0.00917EPSS
Exploits0References2
Prion
Prion
added 2010/12/01 4:6 p.m.19 views

Sql injection

Multiple SQL injection vulnerabilities in contact.php in MRCGIGUY MCG FreeTicket 1.0.0, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 id and 2 email parameters in a showtickets action...

6.8CVSS9.2AI score0.01266EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2010/12/01 4:0 p.m.20 views

CVE-2010-4363

Multiple SQL injection vulnerabilities in contact.php in MRCGIGUY MCG FreeTicket 1.0.0, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 id and 2 email parameters in a showtickets action...

8.5AI score0.01266EPSS
Exploits1References6
CVE
CVE
added 2010/12/01 4:0 p.m.37 views

CVE-2010-4363

The CVE-2010-4363 entry concerns MRCGIGUY (MCG) FreeTicket 1.0.0. The vulnerability is a SQL injection in contact.php exposed via the showtickets action, exploitable through the id and email parameters when magic_quotes_gpc is disabled. This allows remote attackers to execute arbitrary SQL comman...

6.8CVSS8.8AI score0.01266EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder