Vulnerability Details CVE-2010-2124
SQL injection vulnerability in firma.php in Bartels Schone ConPresso 4.0.7 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.6%
CVSS Severity
CVSS v2 Score 7.5
References
- http://packetstormsecurity.org/1005-exploits/conpresso407-sql.txt
- http://www.exploit-db.com/exploits/12684
- http://www.securityfocus.com/bid/40335
- https://exchange.xforce.ibmcloud.com/vulnerabilities/58798
- http://packetstormsecurity.org/1005-exploits/conpresso407-sql.txt
- http://www.exploit-db.com/exploits/12684
- http://www.securityfocus.com/bid/40335
- https://exchange.xforce.ibmcloud.com/vulnerabilities/58798
Products affected by CVE-2010-2124
-
cpe:2.3:a:bartels-schoene:conpresso:4.0.7