Lucene search
HistoryDec 03, 2012 - 9:55 p.m.
CVE-2012-5550
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.4
Confidence
Low
EPSS
0.001
Percentile
51.1%
SQL injection vulnerability in the Time Spent module 6.x and 7.x for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Affected configurations
Node
carlos_carvalhartime_spentMatch6.x-2.x
ORcarlos_carvalhartime_spentMatch7.x-2.x
drupaldrupalMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| carlos_carvalhar | time_spent | 6.x-2.x | cpe:2.3:a:carlos_carvalhar:time_spent:6.x-2.x:*:*:*:*:*:*:* |
| carlos_carvalhar | time_spent | 7.x-2.x | cpe:2.3:a:carlos_carvalhar:time_spent:7.x-2.x:*:*:*:*:*:*:* |
| drupal | drupal | - | cpe:2.3:a:drupal:drupal:-:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2012-5550
2012-12-03 21:55:02
cvelist
cvelist
CVE-2012-5550
2012-12-03 21:00:00
prion
prion
Sql injection
2012-12-03 21:55:00
drupal
drupal
SA-CONTRIB-2012-157 - Time Spent - Multiple Vulnerabilities - (unsupported)
2012-10-24 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.4
Confidence
Low
EPSS
0.001
Percentile
51.1%
Related for NVD:CVE-2012-5550