Sql injection

2008-08-1319:41:00

PRIOn knowledge base

www.prio-n.com

9.2 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

47.7%

JSON

SQL injection vulnerability in comments.php in ZeeScripts Reviews Opinions Rating Posting Engine Web-Site PHP Script (aka ZeeReviews) allows remote attackers to execute arbitrary SQL commands via the ItemID parameter.

References

secunia.com/advisories/31296

securityreason.com/securityalert/4151

www.securityfocus.com/bid/30445

www.vupen.com/english/advisories/2008/2256/references

exchange.xforce.ibmcloud.com/vulnerabilities/44100

www.exploit-db.com/exploits/6165