Описание
Multiple SQL injection vulnerabilities in ClanSphere before 2009.0.1 allow remote attackers to execute arbitrary SQL commands via unknown parameters to the gbook module and unspecified other components.
Ссылки
- Vendor Advisory
- Patch
- PatchVendor Advisory
- Vendor Advisory
- Patch
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2009.0 (включая)
Одно из
cpe:2.3:a:clansphere:clansphere:*:*:*:*:*:*:*:*
cpe:2.3:a:clansphere:clansphere:2007.4:*:*:*:*:*:*:*
cpe:2.3:a:clansphere:clansphere:2007.4.1:*:*:*:*:*:*:*
cpe:2.3:a:clansphere:clansphere:2007.4.2:*:*:*:*:*:*:*
cpe:2.3:a:clansphere:clansphere:2007.4.3:*:*:*:*:*:*:*
cpe:2.3:a:clansphere:clansphere:2007.4.4:*:*:*:*:*:*:*
cpe:2.3:a:clansphere:clansphere:2008:*:*:*:*:*:*:*
cpe:2.3:a:clansphere:clansphere:2008.1:*:*:*:*:*:*:*
cpe:2.3:a:clansphere:clansphere:2008.2:*:*:*:*:*:*:*
cpe:2.3:a:clansphere:clansphere:2008.2.1:*:*:*:*:*:*:*
cpe:2.3:a:clansphere:clansphere:2009.0:rc1:*:*:*:*:*:*
cpe:2.3:a:clansphere:clansphere:2009.0:rc2:*:*:*:*:*:*
cpe:2.3:a:clansphere:clansphere:2009.0:rc3:*:*:*:*:*:*
EPSS
Процентиль: 60%
0.00397
Низкий
7.5 High
CVSS2
Дефекты
CWE-89
Связанные уязвимости
github
почти 4 года назад
Multiple SQL injection vulnerabilities in ClanSphere before 2009.0.1 allow remote attackers to execute arbitrary SQL commands via unknown parameters to the gbook module and unspecified other components.
EPSS
Процентиль: 60%
0.00397
Низкий
7.5 High
CVSS2
Дефекты
CWE-89