CVE-2012-5289

CVE-2012-5289

EPSS 1.3%

Multiple SQL injection vulnerabilities in Plogger 1.0 RC1 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) index.php or (2) gallery.php.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://packetstormsecurity.org/files/view/108295/ploggerphotogallery-sql.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/72079 http://www.securityfocus.com/bid/51228 http://www.securitytracker.com/id?1027608