CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-4215

SQL injection vulnerability in lib/ooz_access.php in OneOrZero Action & Information Management System (AIMS) 2.7.0 allows remote attackers to execute arbitrary SQL commands via the cookieName variable.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.2%

CVSS Severity

CVSS v2 Score 7.5

References

http://en.securitylab.ru/lab/PT-2011-21
http://www.kb.cert.org/vuls/id/800227
http://www.securityfocus.com/bid/50107
http://en.securitylab.ru/lab/PT-2011-21
http://www.kb.cert.org/vuls/id/800227
http://www.securityfocus.com/bid/50107

Products affected by CVE-2011-4215

Oneorzero » Aims » Version: 2.7.0

cpe:2.3:a:oneorzero:aims:2.7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-4215

Products

Pricing

Contact Us