1 results (0.002 seconds)
CVSS: 9.8EPSS: 1%CPEs: 132EXPL: 4
CVSS: 9.8EPSS: 1%CPEs: 132EXPL: 4CVE-2010-4006 – WSN Links - SQL Injection
https://notcve.org/view.php?id=CVE-2010-4006
03 Nov 2010 — Multiple SQL injection vulnerabilities in search.php in WSN Links 5.0.x before 5.0.81, 5.1.x before 5.1.51, and 6.0.x before 6.0.1 allow remote attackers to execute arbitrary SQL commands via the (1) namecondition or (2) namesearch parameter. Múltiples vulnerabilidades de inyección SQL en search.php en WSN Links v5.0.x anterior a v5.0.81, v5.1.x anterior a v5.1.51, y v6.0.x anterior a v6.0.1, permite a atacantes remotos ejecutar comandos SQL de su elección a través de los parámetros (1) namecondition o (2) ... • https://www.exploit-db.com/exploits/15607 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •