exploitDog

CVE-2013-3524

Опубликовано: 10 мая 2013

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

SQL injection vulnerability in popupnewsitem/ in the Pop Up News module 2.0 and possibly earlier for phpVMS allows remote attackers to execute arbitrary SQL commands via the itemid parameter. NOTE: this was originally reported as a problem in phpVMS.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:simpilotgroup:pop_up_news:2.0:*:*:*:*:*:*:*

EPSS

Процентиль: 81%

0.01609

Низкий

7.5 High

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-qfpc-6pg9-h7hv

github

больше 3 лет назад

SQL injection vulnerability in popupnewsitem/ in the Pop Up News module 2.0 and possibly earlier for phpVMS allows remote attackers to execute arbitrary SQL commands via the itemid parameter. NOTE: this was originally reported as a problem in phpVMS.

EPSS

Процентиль: 81%

0.01609

Низкий

7.5 High

CVSS2

Дефекты

CWE-89