Vulnerability Details CVE-2012-1022
SQL injection vulnerability in admin/categories.php in 4images 1.7.10 remote attackers to execute arbitrary SQL commands via the cat_parent_id parameter in an addcat action.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 62.1%
CVSS Severity
CVSS v2 Score 7.5
References
- http://packetstormsecurity.org/files/109290/4images-xss.txt
- http://www.securityfocus.com/bid/51774
- https://exchange.xforce.ibmcloud.com/vulnerabilities/72932
- http://packetstormsecurity.org/files/109290/4images-xss.txt
- http://www.securityfocus.com/bid/51774
- https://exchange.xforce.ibmcloud.com/vulnerabilities/72932
Products affected by CVE-2012-1022
-
cpe:2.3:a:4homepages:4images:1.7.10