CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-4061

Multiple SQL injection vulnerabilities in ASP-DEv XM Diary allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to diary_view.asp or (2) view_date parameter to default.asp.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 54.5%

CVSS Severity

CVSS v2 Score 7.5

References

http://packetstormsecurity.org/files/112257/ASP-DEv-XM-Diary-SQL-Injection.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/75262
http://packetstormsecurity.org/files/112257/ASP-DEv-XM-Diary-SQL-Injection.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/75262

Products affected by CVE-2012-4061

Asp-Dev » Xm Diary » Version: N/A

cpe:2.3:a:asp-dev:xm_diary:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-4061

Products

Pricing

Contact Us