CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

NVD•added 2013/12/21 12:55 a.m.•14 views

CVE-2013-2627

SQL injection vulnerability in action.php in Leed Light Feed, possibly before 1.5 Stable, allows remote attackers to execute arbitrary SQL commands via the id parameter in a removeFolder action...

7.5CVSS8.3AI score0.00379EPSS

Exploits2References4

Prion•added 2013/12/21 12:55 a.m.•12 views

Sql injection

SQL injection vulnerability in action.php in Leed Light Feed, possibly before 1.5 Stable, allows remote attackers to execute arbitrary SQL commands via the id parameter in a removeFolder action...

7.5CVSS9AI score0.00379EPSS

Exploits2References4Affected Software1

Cvelist•added 2013/12/21 12:0 a.m.•18 views

CVE-2013-2627

SQL injection vulnerability in action.php in Leed Light Feed, possibly before 1.5 Stable, allows remote attackers to execute arbitrary SQL commands via the id parameter in a removeFolder action...

8.3AI score0.00379EPSS

Exploits2References4

CVE•added 2013/12/21 12:0 a.m.•44 views

CVE-2013-2627

CVE-2013-2627 describes a SQL injection in Leed (Light Feed) through action.php?action=removeFolder&id=... where user input is not properly escaped. The CSNC advisory confirms multiple vulnerabilities in Leed, including this SQL injection, and notes the vendor-provided fix was to upgrade to the l...

7.5CVSS8.6AI score0.00379EPSS

Exploits2References4Affected Software1

Exploit DB•added 2013/12/18 12:0 a.m.•37 views

Leed - 'id' SQL Injection

source: https://www.securityfocus.com/bid/64426/info Leed is prone to an SQL-injection vulnerability. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by