// For flags

CVE-2011-4946

 

Severity Score

6.8
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

1
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

SQL injection vulnerability in e107_admin/users_extended.php in e107 before 0.7.26 allows remote attackers to execute arbitrary SQL commands via the user_field parameter.

Vulnerabilidad de inyección SQL en e107_admin/users_extended.php en e107 anteriores a v0.7.26 permite a atacantes remotos ejecutar comandos SQL de su elección a través del parámetro user_field.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2011-12-23 CVE Reserved
  • 2012-08-31 CVE Published
  • 2024-08-07 CVE Updated
  • 2024-08-07 First Exploit
  • 2024-09-19 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
  • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
<= 0.7.24
Search vendor "E107" for product "E107" and version " <= 0.7.24"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.0
Search vendor "E107" for product "E107" and version "0.7.0"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.1
Search vendor "E107" for product "E107" and version "0.7.1"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.2
Search vendor "E107" for product "E107" and version "0.7.2"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.3
Search vendor "E107" for product "E107" and version "0.7.3"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.4
Search vendor "E107" for product "E107" and version "0.7.4"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.5
Search vendor "E107" for product "E107" and version "0.7.5"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.6
Search vendor "E107" for product "E107" and version "0.7.6"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.7
Search vendor "E107" for product "E107" and version "0.7.7"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.8
Search vendor "E107" for product "E107" and version "0.7.8"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.9
Search vendor "E107" for product "E107" and version "0.7.9"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.10
Search vendor "E107" for product "E107" and version "0.7.10"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.11
Search vendor "E107" for product "E107" and version "0.7.11"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.12
Search vendor "E107" for product "E107" and version "0.7.12"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.13
Search vendor "E107" for product "E107" and version "0.7.13"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.14
Search vendor "E107" for product "E107" and version "0.7.14"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.15
Search vendor "E107" for product "E107" and version "0.7.15"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.16
Search vendor "E107" for product "E107" and version "0.7.16"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.17
Search vendor "E107" for product "E107" and version "0.7.17"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.18
Search vendor "E107" for product "E107" and version "0.7.18"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.19
Search vendor "E107" for product "E107" and version "0.7.19"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.20
Search vendor "E107" for product "E107" and version "0.7.20"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.21
Search vendor "E107" for product "E107" and version "0.7.21"
-
Affected
E107
Search vendor "E107"
E107
Search vendor "E107" for product "E107"
0.7.22
Search vendor "E107" for product "E107" and version "0.7.22"
-
Affected