Lucene search
Veracode Vulnerability DatabaseVERACODE:4816HistoryJul 30, 2017 - 8:39 p.m.
SQL Injection
2017-07-3020:39:08
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
forkcms is vulnerable to SQL injection. Attackers can leverage a flaw in the language[] or type[] parameters in the translations feature to execute SQL commands.
| CPE | Name | Operator | Version |
|---|---|---|---|
| forkcms/forkcms | le | 3.8.5 |
References
Related
prion
prion
Sql injection
2015-02-06 15:59:00
cvelist
cvelist
CVE-2015-1467
2015-02-06 15:00:00
securityvulns
securityvulns
[CVE-2015-1467] Fork CMS - SQL Injection in Version 3.8.5
2015-02-23 00:00:00
zdt
zdt
Fork CMS 3.8.5 SQL Injection Vulnerability
2015-02-05 00:00:00
cve
cve
CVE-2015-1467
2015-02-06 15:59:00
packetstorm
packetstorm
Fork CMS 3.8.5 SQL Injection
2015-02-04 00:00:00
exploitpack
exploitpack
Fork CMS 3.8.5 - SQL Injection
2015-02-09 00:00:00
exploitdb
exploitdb
Fork CMS 3.8.5 - SQL Injection
2015-02-09 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related for VERACODE:4816