Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1064

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2011-1064
Last Modified 21 Apr 2011 12:00:00
Published 22 Feb 2011 08:00:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-1064

Summary

SQL injection vulnerability in member/list.php in qibosoft Qi Bo CMS 7 allows remote attackers to execute arbitrary SQL commands via the aidDB[] parameter.

Vulnerable Systems

Application

  • Qibosoft Qi Bo Cms 7


References

XF - qibocms-list-sql-injection(65485)

BID - 46445

SECUNIA - 43396

MISC - http://bbs.wolvez.org/viewtopic.php?id=211


Last Updated: 27 May 2016 10:56:08