Lucene search
MitreCVE-2010-1654HistoryMay 03, 2010 - 1:51 p.m.
CVE-2010-1654
2010-05-0313:51:53
CWE-89
mitre
web.nvd.nist.gov
27
cve-2010-1654
sql injection
infocus real estate enterprise edition
security vulnerability
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.9
Confidence
Low
EPSS
0.001
Percentile
48.6%
Multiple SQL injection vulnerabilities in system_member_login.php in Infocus Real Estate Enterprise Edition allow remote attackers to execute arbitrary SQL commands via the (1) username (aka login) and (2) password parameters. NOTE: some of these details are obtained from third party information.
Affected configurations
Node
instantrankingseoinfocus_real_estateMatch--enterprise
| Vendor | Product | Version | CPE |
|---|---|---|---|
| instantrankingseo | infocus_real_estate | - | cpe:2.3:a:instantrankingseo:infocus_real_estate:-:-:enterprise:*:*:*:*:* |
Related
nvd
nvd
CVE-2010-1654
2010-05-03 13:51:53
cvelist
cvelist
CVE-2010-1654
2010-04-30 17:00:00
prion
prion
Sql injection
2010-05-03 13:51:00
exploitdb
exploitdb
Infocus Real Estate Enterprise Edition Script - Authentication Bypass
2010-04-27 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.9
Confidence
Low
EPSS
0.001
Percentile
48.6%
Related for CVE-2010-1654