Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-2216

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2015-2216
Last Modified 18 Mar 2015 10:00:29
Published 05 Mar 2015 10:59:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2015-2216

Summary

SQL injection vulnerability in ecomm-sizes.php in the Photocrati theme 4.x for WordPress allows remote attackers to execute arbitrary SQL commands via the prod_id parameter.

Vulnerable Systems

Application

  • Photocati Media Photocrati 4.07


References

MISC - http://packetstormsecurity.com/files/130595/WordPress-Photocrati-Theme-4.x.x-SQL-Injection.html

EXPLOIT-DB - 36242


Last Updated: 27 May 2016 11:07:58