Sql injection

2008-09-2519:25:00

PRIOn knowledge base

www.prio-n.com

9.1 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

49.4%

SQL injection vulnerability in CJ Ultra Plus 1.0.4 and earlier allows remote attackers to execute arbitrary SQL commands via an SID cookie.

CPENameOperatorVersion
ultra_plusle1.0.4
ultra_pluseq1.0.3

CPE	Name	Operator	Version
	ultra_plus	le	1.0.4
	ultra_plus	eq	1.0.3

References

securityreason.com/securityalert/4316

www.securityfocus.com/bid/31333

www.vupen.com/english/advisories/2008/2651

exchange.xforce.ibmcloud.com/vulnerabilities/45458

www.exploit-db.com/exploits/6536