Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2010-4984

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2010-4984
Last Modified 13 Feb 2012 11:02:44
Published 01 Nov 2011 06:55:05
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2010-4984

Summary

SQL injection vulnerability in notes.php in My Kazaam Notes Management System allows remote attackers to execute arbitrary SQL commands via vectors involving the "Enter Reference Number Below" text box.

Vulnerable Systems

Application

  • Mykazaam Notes Management System

  • Mykazaam Notes Management System -


References

XF - notes-notes-sql-injection(60254)

BID - 41542

EXPLOIT-DB - 14325

MISC - http://packetstormsecurity.org/1007-exploits/mykazaamnms-sqlxss.txt

SREASON - 8494


Last Updated: 27 May 2016 10:57:24