Vulnerability Details CVE-2013-2745
An SQL Injection vulnerability exists in MiniDLNA prior to 1.1.0
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.1%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- http://archives.neohapsis.com/archives/bugtraq/2013-07/0100.html
- http://media.blackhat.com/bh-us-12/Briefings/Cutlip/BH_US_12_Cutlip_SQL_Exploitation_WP.pdf
- https://debian.pkgs.org/8/debian-main-amd64/minidlna_1.1.2+dfsg-1.1+b3_amd64.deb.html
- https://security-tracker.debian.org/tracker/CVE-2013-2745
- https://www.securityfocus.com/archive/1/527299/30/0
- http://archives.neohapsis.com/archives/bugtraq/2013-07/0100.html
- http://media.blackhat.com/bh-us-12/Briefings/Cutlip/BH_US_12_Cutlip_SQL_Exploitation_WP.pdf
- https://debian.pkgs.org/8/debian-main-amd64/minidlna_1.1.2+dfsg-1.1+b3_amd64.deb.html
- https://security-tracker.debian.org/tracker/CVE-2013-2745
- https://www.securityfocus.com/archive/1/527299/30/0
Products affected by CVE-2013-2745
-
cpe:2.3:a:minidlna_project:minidlna:*
-
cpe:2.3:o:debian:debian_linux:10.0
-
cpe:2.3:o:debian:debian_linux:8.0
-
cpe:2.3:o:debian:debian_linux:9.0