Vulnerability Details CVE-2010-0690
SQL injection vulnerability in index.php in CommodityRentals Video Games Rentals allows remote attackers to execute arbitrary SQL commands via the pfid parameter in a catalog action.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 65.2%
CVSS Severity
CVSS v2 Score 7.5
References
- http://osvdb.org/62295
- http://packetstormsecurity.org/1002-exploits/videogamesrental-sql.txt
- http://secunia.com/advisories/38555
- http://www.exploit-db.com/exploits/11409
- https://exchange.xforce.ibmcloud.com/vulnerabilities/56226
- http://osvdb.org/62295
- http://packetstormsecurity.org/1002-exploits/videogamesrental-sql.txt
- http://secunia.com/advisories/38555
- http://www.exploit-db.com/exploits/11409
- https://exchange.xforce.ibmcloud.com/vulnerabilities/56226
Products affected by CVE-2010-0690
-
cpe:2.3:a:commodityrentals:video_games_rentals:*