CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-5076

SQL injection vulnerability in model/comment.class.php in HDWiki 5.0, 5.1, and possibly other versions allows remote attackers to execute arbitrary SQL commands via the PATH_INFO to index.php. NOTE: some of these details are obtained from third party information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 60.7%

CVSS Severity

CVSS v2 Score 7.5

References

http://bbs.wolvez.org/viewtopic.php?id=208
http://secunia.com/advisories/47907
http://www.securityfocus.com/bid/51871
http://bbs.wolvez.org/viewtopic.php?id=208
http://secunia.com/advisories/47907
http://www.securityfocus.com/bid/51871

Products affected by CVE-2011-5076

Hudong » Hdwiki » Version: 5.0

cpe:2.3:a:hudong:hdwiki:5.0
Hudong » Hdwiki » Version: 5.1

cpe:2.3:a:hudong:hdwiki:5.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-5076

Products

Pricing

Contact Us