Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-5342

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2012-5342
Last Modified 30 Jan 2013 12:00:00
Published 09 Oct 2012 11:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-5342

Summary

Multiple SQL injection vulnerabilities in SenseSites CommonSense CMS allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) special.php, (2) article.php, or (3) cat2.php.

Vulnerable Systems

Application

  • Michau Enterprises Llc Commonsense Cms -


References

XF - commonsensecms-id-sql-injection(72158)

MISC - http://packetstormsecurity.org/files/108426/CommonSense-CMS-Blind-SQL-Injection.html


Last Updated: 27 May 2016 11:00:56