CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2010-1863

SQL injection vulnerability in the shoutbox module (modules/shoutbox.php) in ClanTiger 1.1.3 and earlier allows remote attackers to execute arbitrary SQL commands via the s_email parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 54.4%

CVSS Severity

CVSS v2 Score 7.5

References

http://php-security.org/2010/05/04/mops-2010-007-clantiger-shoutbox-module-s_email-sql-injection-vulnerability/index.html
http://php-security.org/2010/05/04/mops-2010-007-clantiger-shoutbox-module-s_email-sql-injection-vulnerability/index.html

Products affected by CVE-2010-1863

Clantiger » Clantiger » Version: Any

cpe:2.3:a:clantiger:clantiger:*
Clantiger » Clantiger » Version: 0.2

cpe:2.3:a:clantiger:clantiger:0.2
Clantiger » Clantiger » Version: 1.0

cpe:2.3:a:clantiger:clantiger:1.0
Clantiger » Clantiger » Version: 1.1

cpe:2.3:a:clantiger:clantiger:1.1
Clantiger » Clantiger » Version: 1.1.1

cpe:2.3:a:clantiger:clantiger:1.1.1
Clantiger » Clantiger » Version: 1.1.2

cpe:2.3:a:clantiger:clantiger:1.1.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-1863

Products

Pricing

Contact Us