Vulnerability Details CVE-2010-4271
SQL injection vulnerability in ImpressCMS before 1.2.3 RC2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.7%
CVSS Severity
CVSS v2 Score 7.5
References
- http://osvdb.org/69082
- http://secunia.com/advisories/42160
- http://www.impresscms.org/content.php?page=ImpressCMS_1.2.3
- http://www.securityfocus.com/bid/44745
- http://osvdb.org/69082
- http://secunia.com/advisories/42160
- http://www.impresscms.org/content.php?page=ImpressCMS_1.2.3
- http://www.securityfocus.com/bid/44745
Products affected by CVE-2010-4271
-
cpe:2.3:a:impresscms:impresscms:1.0
-
cpe:2.3:a:impresscms:impresscms:1.1
-
cpe:2.3:a:impresscms:impresscms:1.1.1
-
cpe:2.3:a:impresscms:impresscms:1.1.2
-
cpe:2.3:a:impresscms:impresscms:1.1.3
-
cpe:2.3:a:impresscms:impresscms:1.2
-
cpe:2.3:a:impresscms:impresscms:1.2.1
-
cpe:2.3:a:impresscms:impresscms:1.2.3