Lucene search
Ubuntu.comUB:CVE-2010-3076HistoryOct 14, 2010 - 12:00 a.m.
CVE-2010-3076
2010-10-1400:00:00
ubuntu.com
ubuntu.com
8
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
58.6%
The filter function in php/src/include.php in Simple Management for BIND
(aka smbind) before 0.4.8 does not anchor a certain regular expression,
which allows remote attackers to conduct SQL injection attacks and execute
arbitrary SQL commands via the username parameter to the admin login page.
Related
nvd
nvd
CVE-2010-3076
2010-10-14 05:57:58
cvelist
cvelist
CVE-2010-3076
2010-10-12 21:00:00
cve
cve
CVE-2010-3076
2010-10-14 05:57:58
openvas
openvas
Simple Management BIND Admin Login Page SQL Injection Vulnerability
2010-12-09 00:00:00
Debian: Security Advisory (DSA-2103-1)
2023-03-08 00:00:00
prion
prion
Sql injection
2010-10-14 05:57:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
58.6%
Related for UB:CVE-2010-3076