CVE-2010-0672

CVE-2010-0672

EPSS 1.0%

SQL injection vulnerability in index.php in WSN Guest 1.02 allows remote attackers to execute arbitrary SQL commands via the orderlinks parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://packetstormsecurity.org/1002-exploits/wsnguest102-sql.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/56256 http://www.exploit-db.com/exploits/11436 http://www.securityfocus.com/bid/38236