CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Tirzen: >> Tirzen Framework >> 1.5 Security Vulnerabilities

CVE-2010-1583

SQL injection vulnerability in the loadByKey function in the TznDbConnection class in tzn_mysql.php in Tirzen (aka TZN) Framework 1.5, as used in TaskFreak! before 0.6.3, allows remote attackers to execute arbitrary SQL commands via the username field in a login action.

CVSS Score

7.5

EPSS Score

0.007

Published

2010-05-06

Page 1

Vulnerabilities

Vulnerable Software

Tirzen: >> Tirzen Framework >> 1.5 Security Vulnerabilities

Products

Pricing

Contact Us