NVD

Id
45343  
Name
CVE-2012-3791  
Description
Multiple SQL injection vulnerabilities in Simple Web Content Management System 1.1 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) item_delete.php, (2) item_status.php, (3) item_detail.php, (4) item_modify.php, or (5) item_position.php in admin/; or (6) status parameter to admin/item_status.php.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-19  
Published
2012-06-21  
Modified Date
2012-08-09  
Seq
2012-3791  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
227687 45343 CVE-2012-3791 18955  View
227688 45343 CVE-2012-3791 53749  View
227689 45343 CVE-2012-3791 swcms-multiple-sql-injection(75999)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
27144 JVNDB-2012-002851 Simple Web Content Management System における SQL インジェクションの脆弱性 Simple Web Content Management System には、SQL インジェクションの脆弱性が存在します。 CVE-2012-3791 57029 CVE-2012-3791 45343 7.5 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-002851.html 2012-06-21 2012-06-26 View