CVE-2012-6654

Severidad

N/A

EPSS

Afecta

Descripción técnica

Multiple SQL injection vulnerabilities in ZPanel 10.0.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) resetkey or (2) inConfEmail parameter to index.php, a different vulnerability than CVE-2012-5685.

Referencias

• http://osvdb.org/show/osvdb/87138
• http://secunia.com/advisories/51172
• https://exchange.xforce.ibmcloud.com/vulnerabilities/79840
• https://web.archive.org/web/20121227103629/http://empathy.hardchats.org/htp4/HTP-4.txt
• http://osvdb.org/show/osvdb/87138
• http://secunia.com/advisories/51172
• https://exchange.xforce.ibmcloud.com/vulnerabilities/79840
• https://web.archive.org/web/20121227103629/http://empathy.hardchats.org/htp4/HTP-4.txt