Vulnerability Details CVE-2013-3523
SQL injection vulnerability in This HTML Is Simple (THIS) before 1.2.4 allows remote to execute arbitrary SQL commands via vectors related to op=page&id= in the URL.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 45.9%
CVSS Severity
CVSS v2 Score 7.5
References
- http://freecode.com/projects/this/releases/353516
- http://osvdb.org/91976
- http://xforce.iss.net/xforce/xfdb/84168
- https://exchange.xforce.ibmcloud.com/vulnerabilities/84168
- http://freecode.com/projects/this/releases/353516
- http://osvdb.org/91976
- http://xforce.iss.net/xforce/xfdb/84168
- https://exchange.xforce.ibmcloud.com/vulnerabilities/84168
Products affected by CVE-2013-3523
-
cpe:2.3:a:gajennings:this:1.0.1
-
cpe:2.3:a:gajennings:this:1.0.2
-
cpe:2.3:a:gajennings:this:1.0.3
-
cpe:2.3:a:gajennings:this:1.0.4
-
cpe:2.3:a:gajennings:this:1.0.5
-
cpe:2.3:a:gajennings:this:1.0.6
-
cpe:2.3:a:gajennings:this:1.1.0
-
cpe:2.3:a:gajennings:this:1.1.1
-
cpe:2.3:a:gajennings:this:1.1.2
-
cpe:2.3:a:gajennings:this:1.1.3
-
cpe:2.3:a:gajennings:this:1.1.4
-
cpe:2.3:a:gajennings:this:1.1.5
-
cpe:2.3:a:gajennings:this:1.1.6
-
cpe:2.3:a:gajennings:this:1.1.7
-
cpe:2.3:a:gajennings:this:1.1.8
-
cpe:2.3:a:gajennings:this:1.2.0
-
cpe:2.3:a:gajennings:this:1.2.1
-
cpe:2.3:a:gajennings:this:1.2.2
-
cpe:2.3:a:gajennings:this:1.2.3