Lucene search
PRIOn knowledge basePRION:CVE-2013-3727HistoryMar 13, 2014 - 2:55 p.m.
Sql injection
2014-03-1314:55:00
PRIOn knowledge base
www.prio-n.com
5
SQL injection vulnerability in Kasseler CMS before 2 r1232 allows remote authenticated users to execute arbitrary SQL commands via the groups[] parameter to admin.php. NOTE: this can be leveraged using CSRF to allow remote unauthenticated attackers to execute arbitrary SQL commands.
| CPE | Name | Operator | Version |
|---|---|---|---|
| kasseler-cms | le | 2 |
Related
cvelist
cvelist
CVE-2013-3727
2014-03-13 14:00:00
CVE-2013-3729
2014-03-13 14:00:00
cve
cve
CVE-2013-3727
2014-03-13 14:55:05
CVE-2013-3729
2014-03-13 14:55:05
nvd
nvd
CVE-2013-3727
2014-03-13 14:55:05
CVE-2013-3729
2014-03-13 14:55:05
prion
prion
Cross site request forgery (csrf)
2014-03-13 14:55:00
htbridge
htbridge
Multiple Vulnerabilities in Kasseler CMS
2013-05-29 00:00:00
securityvulns
securityvulns
Multiple Vulnerabilities in Kasseler CMS
2013-07-15 00:00:00
zdt
zdt
Kasseler CMS 2 r1223 CSRF / XSS / SQL Injection Vulnerabilities
2013-07-03 00:00:00
packetstorm
packetstorm
Kasseler CMS 2 r1223 CSRF / XSS / SQL Injection
2013-07-03 00:00:00
exploitpack
exploitpack
Kasseler CMS 2 r1223 - Multiple Vulnerabilities
2013-07-05 00:00:00
exploitdb
exploitdb
Kasseler CMS 2 r1223 - Multiple Vulnerabilities
2013-07-05 00:00:00