SQL injection vulnerability in ajax.php in evalSMSI 2.1.03 allows remote attackers to execute arbitrary SQL commands via the query parameter in the (1) question action, and possibly the (2) sub_par or (3) num_quest actions.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2010-02-11T17:00:00
Updated: 2024-08-07T00:52:19.908Z
Reserved: 2010-02-11T00:00:00
Link: CVE-2010-0614
Vulnrichment
No data.
NVD
Status : Modified
Published: 2010-02-11T17:30:01.190
Modified: 2018-10-10T19:53:06.790
Link: CVE-2010-0614
Redhat
No data.