Lucene search
HistoryMay 21, 2012 - 10:55 p.m.
CVE-2012-2925
cve-2012-2925
sql injection
engine.php
simple php agenda 2.2.8
nvd
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.8 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
30.1%
SQL injection vulnerability in engine.php in Simple PHP Agenda 2.2.8 allows remote attackers to execute arbitrary SQL commands via the priority parameter in an addTodo action.
Affected configurations
Node
simple_php_agendasimple_php_agendaMatch2.2.8
| CPE | Name | Operator | Version |
|---|---|---|---|
| simple_php_agenda:simple_php_agenda | simple php agenda | eq | 2.2.8 |
Related
nvd
nvd
CVE-2012-2925
2012-05-21 22:55:01
prion
prion
Sql injection
2012-05-21 22:55:00
cvelist
cvelist
CVE-2012-2925
2012-05-21 22:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.8 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
30.1%
Related for CVE-2012-2925