Vulnerability Details CVE-2010-0677
SQL injection vulnerability in index.php in Katalog Stron Hurricane 1.3.5, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the get parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 61.3%
CVSS Severity
CVSS v2 Score 7.5
References
- http://osvdb.org/62339
- http://packetstormsecurity.org/1002-exploits/katalog-rfisql.txt
- http://secunia.com/advisories/38581
- http://www.exploit-db.com/exploits/11452
- http://osvdb.org/62339
- http://packetstormsecurity.org/1002-exploits/katalog-rfisql.txt
- http://secunia.com/advisories/38581
- http://www.exploit-db.com/exploits/11452
Products affected by CVE-2010-0677
-
cpe:2.3:a:katalog.hurricane:katalog_stron_hurricane:1.3.5