7.5

CVE-2004-2263

Exploit
SQL injection vulnerability in the valid function in fr_left.php in PlaySMS 0.7 and earlier allows remote attackers to modify SQL statements via the vc2 cookie.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
PlaysmsPlaysms Version0.6
PlaysmsPlaysms Version0.7
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.35% 0.679
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://securitytracker.com/id?1010984
Patch
http://sourceforge.net/project/shownotes.php?release_id=254915
Patch
http://www.osvdb.org/8984
Patch
http://www.securiteam.com/unixfocus/5UP0F2ADPS.html
Vendor Advisory
Exploit
http://www.securityfocus.com/bid/10970
Patch
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/17031