Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-5289

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2012-5289
Last Modified 07 Feb 2013 12:00:59
Published 04 Oct 2012 12:55:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-5289

Summary

Multiple SQL injection vulnerabilities in Plogger 1.0 RC1 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) index.php or (2) gallery.php.

Vulnerable Systems

Application

  • Plogger 1.0


References

XF - plogger-index-gallery-sql-injection(72079)

BID - 51228

MISC - http://packetstormsecurity.org/files/view/108295/ploggerphotogallery-sql.txt

SECTRACK - 1027608


Last Updated: 27 May 2016 11:00:52