Lucene search
MitreCVE-2010-4970HistoryNov 01, 2011 - 10:55 p.m.
CVE-2010-4970
2011-11-0122:55:01
CWE-89
mitre
web.nvd.nist.gov
28
sql injection
wiki web help 0.28
remote code execution
cve-2010-4970
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.7
Confidence
Low
EPSS
0.001
Percentile
49.6%
SQL injection vulnerability in handlers/getpage.php in Wiki Web Help 0.28 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Affected configurations
Node
wikiwebhelpwiki_web_helpMatch0.28
| Vendor | Product | Version | CPE |
|---|---|---|---|
| wikiwebhelp | wiki_web_help | 0.28 | cpe:2.3:a:wikiwebhelp:wiki_web_help:0.28:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2010-4970
2011-11-01 22:00:00
prion
prion
Sql injection
2011-11-01 22:55:00
nvd
nvd
CVE-2010-4970
2011-11-01 22:55:01
openvas
openvas
Wiki Web Help <= 0.2.8 SQLi Vulnerability - Active Check
2010-07-06 00:00:00
Wiki Web Help 'getpage.php' SQL Injection Vulnerability
2010-07-06 00:00:00
exploitdb
exploitdb
WikiWebHelp 0.28 - SQL Injection
2010-07-05 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.7
Confidence
Low
EPSS
0.001
Percentile
49.6%
Related for CVE-2010-4970