Lucene search

[email protected]NVD:CVE-2012-5328

HistoryOct 08, 2012 - 8:55 p.m.

CVE-2012-5328

2012-10-0820:55:01

CWE-89

[email protected]

web.nvd.nist.gov

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

AI Score

8.1

Confidence

Low

EPSS

0.001

Percentile

42.7%

JSON

Multiple SQL injection vulnerabilities in the Mingle Forum plugin 1.0.32.1 and other versions before 1.0.33 for WordPress might allow remote authenticated users to execute arbitrary SQL commands via the (1) memberid or (2) groupid parameters in a removemember action or (3) id parameter to fs-admin/fs-admin.php, or (4) edit_forum_id parameter in an edit_save_forum action to fs-admin/wpf-edit-forum-group.php.

Affected configurations

Nvd

Node

cartpaujmingle-forumRange≤1.0.32.1

cartpaujmingle-forumMatch1.0.00

cartpaujmingle-forumMatch1.0.01

cartpaujmingle-forumMatch1.0.02

cartpaujmingle-forumMatch1.0.03

cartpaujmingle-forumMatch1.0.04

cartpaujmingle-forumMatch1.0.05

cartpaujmingle-forumMatch1.0.06

cartpaujmingle-forumMatch1.0.07

cartpaujmingle-forumMatch1.0.08

cartpaujmingle-forumMatch1.0.09

cartpaujmingle-forumMatch1.0.10

cartpaujmingle-forumMatch1.0.11

cartpaujmingle-forumMatch1.0.12

cartpaujmingle-forumMatch1.0.13

cartpaujmingle-forumMatch1.0.14

cartpaujmingle-forumMatch1.0.15

cartpaujmingle-forumMatch1.0.16

cartpaujmingle-forumMatch1.0.17

cartpaujmingle-forumMatch1.0.18

cartpaujmingle-forumMatch1.0.19

cartpaujmingle-forumMatch1.0.20

cartpaujmingle-forumMatch1.0.21

cartpaujmingle-forumMatch1.0.21.1

cartpaujmingle-forumMatch1.0.22

cartpaujmingle-forumMatch1.0.23

cartpaujmingle-forumMatch1.0.23.1

cartpaujmingle-forumMatch1.0.23.2

cartpaujmingle-forumMatch1.0.24

cartpaujmingle-forumMatch1.0.25

cartpaujmingle-forumMatch1.0.26

cartpaujmingle-forumMatch1.0.27

cartpaujmingle-forumMatch1.0.28

cartpaujmingle-forumMatch1.0.28.1

cartpaujmingle-forumMatch1.0.28.2

cartpaujmingle-forumMatch1.0.29

cartpaujmingle-forumMatch1.0.30

cartpaujmingle-forumMatch1.0.31

cartpaujmingle-forumMatch1.0.31.1

cartpaujmingle-forumMatch1.0.31.2

cartpaujmingle-forumMatch1.0.31.3

cartpaujmingle-forumMatch1.0.31.4

cartpaujmingle-forumMatch1.0.32

AND

wordpresswordpressMatch-

VendorProductVersionCPE
cartpaujmingle-forum*cpe:2.3:a:cartpauj:mingle-forum:*:*:*:*:*:*:*:*
cartpaujmingle-forum1.0.00cpe:2.3:a:cartpauj:mingle-forum:1.0.00:*:*:*:*:*:*:*
cartpaujmingle-forum1.0.01cpe:2.3:a:cartpauj:mingle-forum:1.0.01:*:*:*:*:*:*:*
cartpaujmingle-forum1.0.02cpe:2.3:a:cartpauj:mingle-forum:1.0.02:*:*:*:*:*:*:*
cartpaujmingle-forum1.0.03cpe:2.3:a:cartpauj:mingle-forum:1.0.03:*:*:*:*:*:*:*
cartpaujmingle-forum1.0.04cpe:2.3:a:cartpauj:mingle-forum:1.0.04:*:*:*:*:*:*:*
cartpaujmingle-forum1.0.05cpe:2.3:a:cartpauj:mingle-forum:1.0.05:*:*:*:*:*:*:*
cartpaujmingle-forum1.0.06cpe:2.3:a:cartpauj:mingle-forum:1.0.06:*:*:*:*:*:*:*
cartpaujmingle-forum1.0.07cpe:2.3:a:cartpauj:mingle-forum:1.0.07:*:*:*:*:*:*:*
cartpaujmingle-forum1.0.08cpe:2.3:a:cartpauj:mingle-forum:1.0.08:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cartpauj	mingle-forum	*	cpe:2.3:a:cartpauj:mingle-forum::::::::
cartpauj	mingle-forum	1.0.00	cpe:2.3:a:cartpauj:mingle-forum:1.0.00:::::::*
cartpauj	mingle-forum	1.0.01	cpe:2.3:a:cartpauj:mingle-forum:1.0.01:::::::*
cartpauj	mingle-forum	1.0.02	cpe:2.3:a:cartpauj:mingle-forum:1.0.02:::::::*
cartpauj	mingle-forum	1.0.03	cpe:2.3:a:cartpauj:mingle-forum:1.0.03:::::::*
cartpauj	mingle-forum	1.0.04	cpe:2.3:a:cartpauj:mingle-forum:1.0.04:::::::*
cartpauj	mingle-forum	1.0.05	cpe:2.3:a:cartpauj:mingle-forum:1.0.05:::::::*
cartpauj	mingle-forum	1.0.06	cpe:2.3:a:cartpauj:mingle-forum:1.0.06:::::::*
cartpauj	mingle-forum	1.0.07	cpe:2.3:a:cartpauj:mingle-forum:1.0.07:::::::*
cartpauj	mingle-forum	1.0.08	cpe:2.3:a:cartpauj:mingle-forum:1.0.08:::::::*