Lucene search
MitreCVE-2010-4614HistoryDec 29, 2010 - 10:33 p.m.
CVE-2010-4614
2010-12-2922:33:32
CWE-89
mitre
web.nvd.nist.gov
27
cve-2010-4614
sql injection
ero auktion 2010
remote attackers
arbitrary sql commands
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.6
Confidence
Low
EPSS
0.002
Percentile
57.3%
SQL injection vulnerability in item.php in Ero Auktion 2010 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2010-0723.
Affected configurations
Node
mhproductsero_auktionMatch2010
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mhproducts | ero_auktion | 2010 | cpe:2.3:a:mhproducts:ero_auktion:2010:*:*:*:*:*:*:* |
Related
prion
prion
Sql injection
2010-12-29 22:33:00
Sql injection
2010-02-26 20:30:00
cvelist
cvelist
CVE-2010-4614
2010-12-29 19:00:00
CVE-2010-0723
2010-02-26 20:00:00
nvd
nvd
CVE-2010-4614
2010-12-29 22:33:32
CVE-2010-0723
2010-02-26 20:30:00
exploitdb
exploitdb
Ero Auktion 2010 - 'item.php' SQL Injection
2010-12-18 00:00:00
Ero Auktion 2010 - 'news.php' SQL Injection
2010-02-22 00:00:00
Ero Auktion 2.0 - 'news.php' SQL Injection
2010-02-22 00:00:00
cve
cve
CVE-2010-0723
2010-02-26 20:30:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.6
Confidence
Low
EPSS
0.002
Percentile
57.3%
Related for CVE-2010-4614