NVD

Id
9001  
Name
CVE-2011-2181  
Description
Multiple SQL injection vulnerabilities in A Really Simple Chat (ARSC) 3.3-rc2 allow remote attackers to execute arbitrary SQL commands via the (1) arsc_user parameter to base/admin/edit_user.php, (2) arsc_layout_id parameter in base/admin/edit_layout.php, or (3) arsc_room parameter to base/admin/edit_room.php.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-07  
Published
2011-06-29  
Modified Date
2011-06-30  
Seq
2011-2181  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
51643 9001 CVE-2011-2181 http://www.htbridge.ch/advisory/multiple_sql_injections_in_a_really_simple_chat_arsc.html  View
51644 9001 CVE-2011-2181 [oss-security] 20110602 CVE request: Multiple security vulnerabilities in ARSC Really Simple Chat  View
51645 9001 CVE-2011-2181 [oss-security] 20110602 Re: CVE request: Multiple security vulnerabilities in ARSC Really Simple Chat  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
34421 JVNDB-2011-004663 ARSC における SQL インジェクションの脆弱性 A Really Simple Chat (ARSC) には、SQL インジェクションの脆弱性が存在します。 CVE-2011-2181 50088 CVE-2011-2181 9001 7.5 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-004663.html 2011-06-29 2012-03-27 View