CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2010-3608

HIGH
7.5
CVSS Severity Score
EPSS Score0.1560%
EPSS Percentile32.96th
Published2010年9月24日
Last Modified2026年4月29日

Vulnerability Description

Multiple SQL injection vulnerabilities in wpQuiz 2.7 allow remote attackers to execute arbitrary SQL commands via the (1) id and (2) password (pw) parameters to (a) admin.php or (b) user.php.

Affected Platforms (CPE)

📦
Wire Plastic Design

Wpquiz

= 2.7

References & Advisories

🔗 http://packetstormsecurity.org/1009-exploits/wpquiz27-sql.txt
🔗 http://www.exploit-db.com/exploits/15075
🔗 http://www.securityfocus.com/bid/43384
🔗 http://packetstormsecurity.org/1009-exploits/wpquiz27-sql.txt
🔗 http://www.exploit-db.com/exploits/15075
🔗 http://www.securityfocus.com/bid/43384

相關漏洞威脅

CVE-2007-617210.0

Multiple SQL injection vulnerabilities in wpQuiz 2.7 allow remote attackers to execute arbitrary SQL commands via the id parameter...

CVE-2004-17047.5

WpQuiz 2.60b1 through 2.60b8 allows remote attackers to gain privileges via a direct request to adminrestore.php in the extras dir...

CVE-2010-064610.0

Multiple integer signedness errors in factory.cc in Google V8 before r3560, as used in Google Chrome before 4.0.249.89, allow remo...

CVE-2010-010810.0

Buffer overflow in the cliproxy.objects.1 ActiveX control in the Symantec Client Proxy (CLIproxy.dll) in Symantec AntiVirus 10.0.x...