Vulnerability Details CVE-2010-1047
SQL injection vulnerability in index.php in MASA2EL Music City 1.0 and 1.1 allows remote attackers to execute arbitrary SQL commands via the id parameter in a singer action.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 65.4%
CVSS Severity
CVSS v2 Score 7.5
References
- http://osvdb.org/62133
- http://packetstormsecurity.org/1002-exploits/masa2elmc-sql.txt
- http://secunia.com/advisories/38469
- http://www.exploit-db.com/exploits/11329
- https://exchange.xforce.ibmcloud.com/vulnerabilities/56110
- http://osvdb.org/62133
- http://packetstormsecurity.org/1002-exploits/masa2elmc-sql.txt
- http://secunia.com/advisories/38469
- http://www.exploit-db.com/exploits/11329
- https://exchange.xforce.ibmcloud.com/vulnerabilities/56110
Products affected by CVE-2010-1047
-
cpe:2.3:a:masa2el:music_city:1.0
-
cpe:2.3:a:masa2el:music_city:1.1