CVE-2010-2133

Published Jun 2, 2010

Last updated 8 years ago

CVSS info 7.5

Overview

Description: SQL injection vulnerability in contact.php in My Little Forum allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2007-2942.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-89

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:mylittleforum:my_little_forum:1.7.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F6AB6203-0E68-497A-BFE5-A229C0068E26"
          },
          {
            "criteria": "cpe:2.3:a:mylittleforum:my_little_forum:2.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A7973FD4-7EDD-48C9-9B95-7D4678E70850"
          },
          {
            "criteria": "cpe:2.3:a:mylittleforum:my_little_forum:2.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EB94B44C-42A7-443F-A6E9-6DE93E87C85B"
          },
          {
            "criteria": "cpe:2.3:a:mylittleforum:my_little_forum:2.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E898682A-8933-4000-94EC-4801B21CDEBE"
          },
          {
            "criteria": "cpe:2.3:a:mylittleforum:my_little_forum:2.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B3C28D43-05D3-4645-9A1E-003A63F861FD"
          },
          {
            "criteria": "cpe:2.3:a:mylittleforum:my_little_forum:2.1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8A07346A-D071-419C-98A5-0FE71C6A00AA"
          },
          {
            "criteria": "cpe:2.3:a:mylittleforum:my_little_forum:2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DB8A29FA-6B28-49BB-9F29-5964A540B08F"
          },
          {
            "criteria": "cpe:2.3:a:mylittleforum:my_little_forum:2.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4736CDC9-4219-46E9-A8B6-37CE2B102DC3"
          },
          {
            "criteria": "cpe:2.3:a:mylittleforum:my_little_forum:2.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "34ECB22B-2853-404B-A75C-4B27ED412AC1"
          },
          {
            "criteria": "cpe:2.3:a:mylittleforum:my_little_forum:2.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C4DBABC9-4A83-4338-AF44-68079CB11C4C"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References