CVE-2010-1924

Description

SQL injection vulnerability in index.php in Hi Web Wiesbaden Live Shopping Multi Portal System allows remote attackers to execute arbitrary SQL commands via the artikel parameter.

Affected Software
References

Software	From	Fixed in
phpscripte24 / live_shopping_multi_portal_system	-	-

http://osvdb.org/64512
http://secunia.com/advisories/39718
http://www.exploit-db.com/exploits/12545
http://www.securityfocus.com/bid/40040
https://exchange.xforce.ibmcloud.com/vulnerabilities/58392

Severity: High

CVE: CVE-2010-1924
Published: May 12, 2010
Updated: Apr 13, 2023
Exploit:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWE-89

A1 - Injection

CVE-2010-1924

Description

Details

CVSS v2

CWEs

OWASP TOP 10