Vulnerability Details CVE-2015-2066
SQL injection vulnerability in DLGuard 4.5 allows remote attackers to execute arbitrary SQL commands via the c parameter to index.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.7%
CVSS Severity
CVSS v2 Score 7.5
References
- http://seclists.org/fulldisclosure/2015/Feb/69
- http://securityrelated.blogspot.com/2015/02/dlguard-sql-injection-security.html
- http://tetraph.com/security/sql-injection-vulnerability/dlguard-sql-injection-security-vulnerabilities/
- http://www.securityfocus.com/bid/72683
- http://seclists.org/fulldisclosure/2015/Feb/69
- http://securityrelated.blogspot.com/2015/02/dlguard-sql-injection-security.html
- http://tetraph.com/security/sql-injection-vulnerability/dlguard-sql-injection-security-vulnerabilities/
- http://www.securityfocus.com/bid/72683