CVE-2010-1521

Опубликовано: 30 июн. 2010

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

SQL injection vulnerability in include/classes/tzn_user.php in TaskFreak! Original multi user before 0.6.4 allows remote attackers to execute arbitrary SQL commands via the password parameter to login.php.

Ссылки

http://osvdb.org/65847
http://secunia.com/advisories/40025
Vendor Advisory
http://secunia.com/secunia_research/2010-79/
Vendor Advisory
http://www.securityfocus.com/archive/1/512077/100/0/threaded
http://www.securityfocus.com/bid/41218
http://www.taskfreak.com/original/versions
Patch
http://osvdb.org/65847
http://secunia.com/advisories/40025
Vendor Advisory
http://secunia.com/secunia_research/2010-79/
Vendor Advisory
http://www.securityfocus.com/archive/1/512077/100/0/threaded
http://www.securityfocus.com/bid/41218
http://www.taskfreak.com/original/versions
Patch

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:taskfreak:taskfreak\!:*:*:*:*:*:*:*:*

Версия до 0.6.3 (включая)

cpe:2.3:a:taskfreak:taskfreak\!:0.1:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.1.2:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.1.3:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.1.4:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.2.0:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.2.1:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.2.2:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.3.0:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.3.1:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.3.2:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.4.0:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.4.1:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.4.2:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.5.0:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.5.1:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.5.2:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.5.3:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.5.4:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.5.5:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.5.6:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.5.7:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.6.0:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.6.1:*:*:*:*:*:*:*

cpe:2.3:a:taskfreak:taskfreak\!:0.6.2:*:*:*:*:*:*:*

EPSS

Процентиль: 72%

0.00706

Низкий

7.5 High

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-w95f-c925-pwx7

github

больше 3 лет назад