CVEDB API

Vulnerability Details CVE-2013-6341

SQL injection vulnerability in Dokeos 2.2 RC2 and earlier allows remote attackers to execute arbitrary SQL commands via the language parameter to index.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.02

EPSS Ranking 82.7%

CVSS Severity

CVSS v2 Score 7.5

References

http://archives.neohapsis.com/archives/bugtraq/2013-11/0140.html
http://packetstormsecurity.com/files/124201
http://www.exploit-db.com/exploits/30013
https://exchange.xforce.ibmcloud.com/vulnerabilities/89265
https://www.htbridge.com/advisory/HTB23181
http://archives.neohapsis.com/archives/bugtraq/2013-11/0140.html
http://packetstormsecurity.com/files/124201
http://www.exploit-db.com/exploits/30013
https://exchange.xforce.ibmcloud.com/vulnerabilities/89265
https://www.htbridge.com/advisory/HTB23181

Products affected by CVE-2013-6341

Dokeos » Dokeos » Version: Any

cpe:2.3:a:dokeos:dokeos:*
Dokeos » Dokeos » Version: 2.0

cpe:2.3:a:dokeos:dokeos:2.0
Dokeos » Dokeos » Version: 2.1

cpe:2.3:a:dokeos:dokeos:2.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-6341

Products

Pricing

Contact Us