Lucene search
MitreCVE-2012-5342HistoryOct 09, 2012 - 3:55 p.m.
CVE-2012-5342
2012-10-0915:55:01
CWE-89
mitre
web.nvd.nist.gov
24
cve
sql injection
sensesites
commonsense cms
security vulnerability
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.8
Confidence
Low
EPSS
0.001
Percentile
46.6%
Multiple SQL injection vulnerabilities in SenseSites CommonSense CMS allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) special.php, (2) article.php, or (3) cat2.php.
Affected configurations
Node
michau_enterprises_llccommonsense_cmsMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| michau_enterprises_llc | commonsense_cms | - | cpe:2.3:a:michau_enterprises_llc:commonsense_cms:-:*:*:*:*:*:*:* |
Related
prion
prion
Sql injection
2012-10-09 15:55:00
exploitdb
exploitdb
SenseSites CommonSense CMS - 'id' SQL Injection
2012-01-06 00:00:00
SenseSites CommonSense CMS - 'article.php?id' SQL Injection
2012-01-06 00:00:00
SenseSites CommonSense CMS - 'special.php?id' SQL Injection
2012-01-06 00:00:00
cvelist
cvelist
CVE-2012-5342
2012-10-09 15:00:00
nvd
nvd
CVE-2012-5342
2012-10-09 15:55:01
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.8
Confidence
Low
EPSS
0.001
Percentile
46.6%
Related for CVE-2012-5342