CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-10038

SQL injection vulnerability in agenda/indexdate.php in DomPHP 0.83 and earlier allows remote attackers to execute arbitrary SQL commands via the ids parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 75.6%

CVSS Severity

CVSS v2 Score 7.5

References

http://osvdb.org/show/osvdb/102180
http://packetstormsecurity.com/files/124801
http://www.exploit-db.com/exploits/30872
https://exchange.xforce.ibmcloud.com/vulnerabilities/90528
http://osvdb.org/show/osvdb/102180
http://packetstormsecurity.com/files/124801
http://www.exploit-db.com/exploits/30872
https://exchange.xforce.ibmcloud.com/vulnerabilities/90528

Products affected by CVE-2014-10038

Domphp » Domphp » Version: Any

cpe:2.3:a:domphp:domphp:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-10038

Products

Pricing

Contact Us