Vulnerability Details CVE-2010-4996
SQL injection vulnerability in ogp_show.php in esoftpro Online Guestbook Pro 5.1 allows remote attackers to execute arbitrary SQL commands via the search parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 50.8%
CVSS Severity
CVSS v2 Score 7.5
References
- http://www.exploit-db.com/exploits/14204
- http://www.securityfocus.com/bid/41363
- http://www.vupen.com/english/advisories/2010/1697
- https://exchange.xforce.ibmcloud.com/vulnerabilities/60037
- http://www.exploit-db.com/exploits/14204
- http://www.securityfocus.com/bid/41363
- http://www.vupen.com/english/advisories/2010/1697
- https://exchange.xforce.ibmcloud.com/vulnerabilities/60037
Products affected by CVE-2010-4996
-
cpe:2.3:a:esoftpro:online_guestbook_pro:5.1