CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-0404

Multiple SQL injection vulnerabilities in phpGroupWare (phpgw) before 0.9.16.016 allow remote attackers to execute arbitrary SQL commands via unspecified parameters to (1) class.sessions_db.inc.php, (2) class.translation_sql.inc.php, or (3) class.auth_sql.inc.php in phpgwapi/inc/.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 75.1%

CVSS Severity

CVSS v2 Score 7.5

References

Products affected by CVE-2010-0404

Phpgroupware » Phpgroupware » Version: Any

cpe:2.3:a:phpgroupware:phpgroupware:*
Phpgroupware » Phpgroupware » Version: 0.9.16

cpe:2.3:a:phpgroupware:phpgroupware:0.9.16
Phpgroupware » Phpgroupware » Version: 0.9.16.000

cpe:2.3:a:phpgroupware:phpgroupware:0.9.16.000
Phpgroupware » Phpgroupware » Version: 0.9.16.001

cpe:2.3:a:phpgroupware:phpgroupware:0.9.16.001
Phpgroupware » Phpgroupware » Version: 0.9.16.002

cpe:2.3:a:phpgroupware:phpgroupware:0.9.16.002
Phpgroupware » Phpgroupware » Version: 0.9.16.003

cpe:2.3:a:phpgroupware:phpgroupware:0.9.16.003
Phpgroupware » Phpgroupware » Version: 0.9.16.005

cpe:2.3:a:phpgroupware:phpgroupware:0.9.16.005
Phpgroupware » Phpgroupware » Version: 0.9.16.010

cpe:2.3:a:phpgroupware:phpgroupware:0.9.16.010
Phpgroupware » Phpgroupware » Version: 0.9.16.011

cpe:2.3:a:phpgroupware:phpgroupware:0.9.16.011
Phpgroupware » Phpgroupware » Version: 0.9.16.012

cpe:2.3:a:phpgroupware:phpgroupware:0.9.16.012
Phpgroupware » Phpgroupware » Version: 0.9.16.014

cpe:2.3:a:phpgroupware:phpgroupware:0.9.16.014

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-0404

Products

Pricing

Contact Us