Sql injection

2011-10-0510:55:00

PRIOn knowledge base

www.prio-n.com

9.1 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

35.5%

SQL injection vulnerability in asearch.php in webSPELL 4.2.1 allows remote attackers to execute arbitrary SQL commands via the search parameter.

CPENameOperatorVersion
webspelleq4.2.1

CPE	Name	Operator	Version
	webspell	eq	4.2.1

References

packetstormsecurity.org/1009-exploits/webspell421-sql.txt

securityreason.com/securityalert/8419

www.securityfocus.com/bid/43579

www.webspell.org/index.php?site=files&cat=21

exchange.xforce.ibmcloud.com/vulnerabilities/62130

www.exploit-db.com/exploits/15151