CVE-2010-4006

Multiple SQL injection vulnerabilities in search.php in WSN Links 5.0.x before 5.0.81, 5.1.x before 5.1.51, and 6.0.x before 6.0.1 allow remote attackers to execute arbitrary SQL commands via the (1) namecondition or (2) namesearch parameter.

Published: Nov 3, 2010
Updated: Apr 13, 2023
CVE: CVE-2010-4006
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-89

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
wsnlinks / wsn_links	5.0.72	5.0.72.x
wsnlinks / wsn_links	5.0.58	5.0.58.x
wsnlinks / wsn_links	5.0.25	5.0.25.x
wsnlinks / wsn_links	5.0.34	5.0.34.x
wsnlinks / wsn_links	5.0.70	5.0.70.x
wsn / wsn_links	5.1.38	5.1.38.x
wsn / wsn_links	5.1.4	5.1.4.x
wsn / links	5.1.25	5.1.25.x
wsnlinks / wsn_links	5.0.51	5.0.51.x
wsnlinks / wsn_links	5.0.49	5.0.49.x
wsn / wsn_links	5.1.48	5.1.48.x
wsn / wsn_links	5.1.45	5.1.45.x
wsnlinks / wsn_links	5.0.13	5.0.13.x
wsn / wsn_links	5.1.14	5.1.14.x
wsnlinks / wsn_links	5.0.11	5.0.11.x
wsn / wsn_links	5.1.37	5.1.37.x
wsnlinks / wsn_links	5.0.77	5.0.77.x
wsn / links	5.1.34	5.1.34.x
wsnlinks / wsn_links	5.0.44	5.0.44.x
wsnlinks / wsn_links	5.0.31	5.0.31.x
wsn / wsn_links	5.1.35	5.1.35.x
wsnlinks / wsn_links	5.0.21	5.0.21.x
wsnlinks / wsn_links	5.0.40	5.0.40.x
wsnlinks / wsn_links	5.0.39	5.0.39.x
wsnlinks / wsn_links	5.0.35	5.0.35.x
wsnlinks / wsn_links	5.0.54	5.0.54.x
wsn / wsn_links	5.1.1	5.1.1.x
wsnlinks / wsn_links	5.0.68	5.0.68.x
wsnlinks / wsn_links	5.0.55	5.0.55.x
wsn / wsn_links	5.1.8	5.1.8.x
wsnlinks / wsn_links	5.0.10	5.0.10.x
wsnlinks / wsn_links	5.0.12	5.0.12.x
wsnlinks / wsn_links	5.0.9	5.0.9.x
wsnlinks / wsn_links	5.0.76	5.0.76.x
wsn / wsn_links	5.1.16	5.1.16.x
wsnlinks / wsn_links	5.0.66	5.0.66.x
wsn / wsn_links	5.1.12	5.1.12.x
wsnlinks / wsn_links	5.0.33	5.0.33.x
wsn / wsn_links	5.1.40	5.1.40.x
wsnlinks / wsn_links	5.0.27	5.0.27.x
wsnlinks / wsn_links	5.0.26	5.0.26.x
wsn / links	5.1.26	5.1.26.x
wsnlinks / wsn_links	5.0.6	5.0.6.x
wsn / links	5.1.3	5.1.3.x
wsnlinks / wsn_links	5.0.43	5.0.43.x
wsn / wsn_links	5.1.47	5.1.47.x
wsnlinks / wsn_links	5.0.63	5.0.63.x
wsnlinks / wsn_links	5.0.0	5.0.0.x
wsn / links	5.1.19	5.1.19.x
wsn / links	5.1.30	5.1.30.x
wsn / links	5.1.20	5.1.20.x
wsnlinks / wsn_links	5.0.30	5.0.30.x
wsnlinks / wsn_links	5.0.48	5.0.48.x
wsnlinks / wsn_links	5.0.57	5.0.57.x
wsn / links	5.1.31	5.1.31.x
wsnlinks / wsn_links	5.0.80	5.0.80.x
wsnlinks / wsn_links	5.0.73	5.0.73.x
wsnlinks / wsn_links	5.0.79	5.0.79.x
wsnlinks / wsn_links	5.0.20	5.0.20.x
wsn / links	5.1.29	5.1.29.x
wsn / wsn_links	5.1.15	5.1.15.x
wsnlinks / wsn_links	5.0.65	5.0.65.x
wsn / wsn_links	5.1.44	5.1.44.x
wsnlinks / wsn_links	5.0.61	5.0.61.x
wsnlinks / wsn_links	5.0.74	5.0.74.x
wsn / wsn_links	5.1.11	5.1.11.x
wsnlinks / wsn_links	5.0.3	5.0.3.x
wsn / links	5.1.27	5.1.27.x
wsnlinks / wsn_links	5.0.14	5.0.14.x
wsnlinks / wsn_links	5.0.46	5.0.46.x
wsnlinks / wsn_links	5.0.18	5.0.18.x
wsnlinks / wsn_links	5.0.56	5.0.56.x
wsnlinks / wsn_links	5.0.38	5.0.38.x
wsn / wsn_links	5.1.42	5.1.42.x
wsnlinks / wsn_links	5.0.4	5.0.4.x
wsn / wsn_links	5.1.9	5.1.9.x
wsn / wsn_links	5.1.43	5.1.43.x
wsnlinks / wsn_links	5.0.36	5.0.36.x
wsnlinks / wsn_links	5.0.45	5.0.45.x
wsn / wsn_links	5.1.7	5.1.7.x
wsnlinks / wsn_links	5.0.75	5.0.75.x
wsnlinks / wsn_links	5.0.62	5.0.62.x
wsnlinks / wsn_links	5.0.41	5.0.41.x
wsnlinks / wsn_links	5.0.15	5.0.15.x
wsn / links	5.1.18	5.1.18.x
wsnlinks / wsn_links	5.0.64	5.0.64.x
wsn / wsn_links	5.1.49	5.1.49.x
wsn / wsn_links	5.1.5	5.1.5.x
wsn / wsn_links	5.1.36	5.1.36.x
wsnlinks / wsn_links	5.0.23	5.0.23.x
wsn / links	5.1.21	5.1.21.x
wsnlinks / wsn_links	5.0.28	5.0.28.x
wsn / wsn_links	5.1.39	5.1.39.x
wsnlinks / wsn_links	5.0.22	5.0.22.x
wsnlinks / wsn_links	5.0.2	5.0.2.x
wsnlinks / wsn_links	5.0.32	5.0.32.x
wsn / links	5.1.32	5.1.32.x
wsnlinks / wsn_links	5.0.19	5.0.19.x
wsn / links	5.1.22	5.1.22.x
wsnlinks / wsn_links	5.0.8	5.0.8.x
wsnlinks / wsn_links	5.0.71	5.0.71.x
wsnlinks / wsn_links	5.0.5	5.0.5.x
wsnlinks / wsn_links	5.0.17	5.0.17.x
wsnlinks / wsn_links	5.0.53	5.0.53.x
wsnlinks / wsn_links	5.0.52	5.0.52.x
wsnlinks / wsn_links	5.0.60	5.0.60.x
wsn / wsn_links	6.0.0	6.0.0.x
wsn / links	5.1.33	5.1.33.x
wsnlinks / wsn_links	5.0.1	5.0.1.x
wsn / wsn_links	5.1.41	5.1.41.x
wsnlinks / wsn_links	5.0.69	5.0.69.x
wsn / links	5.1.23	5.1.23.x
wsnlinks / wsn_links	5.0.78	5.0.78.x
wsnlinks / wsn_links	5.0.42	5.0.42.x
wsn / links	5.1.24	5.1.24.x
wsn / links	5.1.28	5.1.28.x
wsnlinks / wsn_links	5.0.59	5.0.59.x
wsn / wsn_links	5.1.10	5.1.10.x
wsn / wsn_links	5.1.0	5.1.0.x
wsn / links	5.1.2	5.1.2.x
wsn / wsn_links	5.1.46	5.1.46.x
wsnlinks / wsn_links	5.0.47	5.0.47.x
wsn / links	5.1.17	5.1.17.x
wsnlinks / wsn_links	5.0.67	5.0.67.x
wsn / wsn_links	5.1.6	5.1.6.x
wsnlinks / wsn_links	5.0.50	5.0.50.x
wsnlinks / wsn_links	5.0.16	5.0.16.x
wsnlinks / wsn_links	5.0.24	5.0.24.x
wsnlinks / wsn_links	5.0.37	5.0.37.x
wsnlinks / wsn_links	5.0.7	5.0.7.x
wsnlinks / wsn_links	5.0.29	5.0.29.x
wsn / wsn_links	5.1.13	5.1.13.x

Vulnerability Database

289,784

CVE-2010-4006