Zurück zur CVE-Übersicht
CVE-2009-2242
MEDIUM(6.8)AV:N/AC:M/Au:N/C:P/I:P/A:P
Risk Signal Score17/100 — NIEDRIG
- CVSS 6.8 — Mittel
EPSS-Score
1%
Exploit-Wahrscheinlichkeit (30 Tage)
CVSS Score
6.8
Technische Schwere
Beschreibung
SQL injection vulnerability in active_appointments.asp in ASP Inline Corporate Calendar allows remote attackers to execute arbitrary SQL commands via the order parameter.
Referenzen
- http://secunia.com/advisories/35187
- http://www.exploit-db.com/exploits/8756
- http://www.securityfocus.com/bid/35054
- https://exchange.xforce.ibmcloud.com/vulnerabilities/50667
- http://secunia.com/advisories/35187
- http://www.exploit-db.com/exploits/8756
- http://www.securityfocus.com/bid/35054
- https://exchange.xforce.ibmcloud.com/vulnerabilities/50667