CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-6039

SQL injection vulnerability in view_comments.php in YABSoft Advanced Image Hosting (AIH) Script, possibly 2.3, allows remote attackers to execute arbitrary SQL commands via the gal parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.2%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.exploit-db.com/exploits/18352
http://www.osvdb.org/82543
http://www.securityfocus.com/bid/51394
http://www.exploit-db.com/exploits/18352
http://www.osvdb.org/82543
http://www.securityfocus.com/bid/51394

Products affected by CVE-2012-6039

Yabsoft » Advanced Image Hosting Script » Version: N/A

cpe:2.3:a:yabsoft:advanced_image_hosting_script:-
Yabsoft » Advanced Image Hosting Script » Version: 2.3

cpe:2.3:a:yabsoft:advanced_image_hosting_script:2.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-6039

Products

Pricing

Contact Us