CVE-2010-4006 Information

Feb 14, 2021 cve

Description

Multiple SQL injection vulnerabilities in search.php in WSN Links 5.0.x before 5.0.81 5.1.x before 5.1.51 and 6.0.x before 6.0.1 allow remote attackers to execute arbitrary SQL commands via the (1) namecondition or (2) namesearch parameter.

Reference

http://archives.neohapsis.com/archives/fulldisclosure/2010-10/0512.html http://www.exploit-db.com/exploits/15607 http://www.securityfocus.com/archive/1/514585/100/0/threaded http://www.securityfocus.com/bid/44593 http://www.uncompiled.com/2010/10/wsn-links-sql-injection-vulnerability-cve-2010-4006/ https://exchange.xforce.ibmcloud.com/vulnerabilities/62939

Share on: