Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-5313

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2011-5313
Last Modified 02 Jan 2015 10:52:16
Published 01 Jan 2015 06:59:18
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-5313

Summary

Multiple SQL injection vulnerabilities in includes/password.php in Redaxscript 0.3.2 allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) password parameter to the password_reset program.

Vulnerable Systems

Application

  • Redaxscript 0.3.2


References

MISC - https://www.htbridge.com/advisory/HTB22804


Last Updated: 27 May 2016 11:07:24