exploitDog

CVE-2010-0724

Опубликовано: 26 фев. 2010

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

SQL injection vulnerability in showimg.php in Arab Cart 1.0.2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Ссылки

http://packetstormsecurity.org/1002-exploits/arabcart-sqlxss.txt
Exploit
http://www.exploit-db.com/exploits/11524
Exploit
http://www.securityfocus.com/bid/38426
http://www.vupen.com/english/advisories/2010/0443
Vendor Advisory
http://packetstormsecurity.org/1002-exploits/arabcart-sqlxss.txt
Exploit
http://www.exploit-db.com/exploits/11524
Exploit
http://www.securityfocus.com/bid/38426
http://www.vupen.com/english/advisories/2010/0443
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:mhd_zaher_ghaibeh:arab_cart:1.0.2.0:*:*:*:*:*:*:*

EPSS

Процентиль: 74%

0.00844

Низкий

7.5 High

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-445r-27v9-x6w7

github

почти 4 года назад

SQL injection vulnerability in showimg.php in Arab Cart 1.0.2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.

EPSS

Процентиль: 74%

0.00844

Низкий

7.5 High

CVSS2

Дефекты

CWE-89