Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2010-4271

Опубликовано: 17 нояб. 2010
Источник: nvd
CVSS2: 7.5
EPSS Низкий

Описание

SQL injection vulnerability in ImpressCMS before 1.2.3 RC2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:impresscms:impresscms:*:rc1:*:*:*:*:*:*
Версия до 1.2.3 (включая)
cpe:2.3:a:impresscms:impresscms:1.0:beta1:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.0:beta2:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.0:final:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.0:rc1:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.0:rc2:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.0:rc3:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.1:alpha1:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.1:alpha2:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.1:beta1:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.1:final:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.1:rc1:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.1:rc2:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.1:rc3:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.1.1:final:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.1.1:rc1:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.1.1:rc2:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.1.2:final:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.1.2:rc1:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.1.2:rc2:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.1.3:beta:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.1.3:final:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.1.3:rc1:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.2:alpha1:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.2:alpha2:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.2:beta:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.2:final:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.2:rc1:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.2:rc2:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.2.1:beta:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.2.1:final:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.2.1:rc1:*:*:*:*:*:*
cpe:2.3:a:impresscms:impresscms:1.2.3:beta:*:*:*:*:*:*

EPSS

Процентиль: 60%
0.00397
Низкий

7.5 High

CVSS2

Дефекты

CWE-89

Связанные уязвимости

github логотип

GHSA-hh8r-mv36-fgxg

github
больше 3 лет назад

SQL injection vulnerability in ImpressCMS before 1.2.3 RC2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

EPSS

Процентиль: 60%
0.00397
Низкий

7.5 High

CVSS2

Дефекты

CWE-89