CVE-2011-5218
Published Oct 25, 2012
Last updated 7 years ago
Overview
- Description
- SQL injection vulnerability in DotA OpenStats 1.3.9 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-89
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:neubivljiv:dota_openstats:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0775ED7E-ECE7-452D-93CE-1C5E652C9E7A",
"versionEndIncluding": "1.3.9"
},
{
"criteria": "cpe:2.3:a:neubivljiv:dota_openstats:1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "97611E6A-D3FE-4E8A-8A5A-71EDB1917D9E"
},
{
"criteria": "cpe:2.3:a:neubivljiv:dota_openstats:1.1.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A4A55D34-90F2-48AC-892B-133CE971FB4F"
},
{
"criteria": "cpe:2.3:a:neubivljiv:dota_openstats:1.2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ABC066ED-836C-4714-BDE9-316919DB8305"
},
{
"criteria": "cpe:2.3:a:neubivljiv:dota_openstats:1.2.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "128A492C-F740-4820-B582-F2D71D180D07"
},
{
"criteria": "cpe:2.3:a:neubivljiv:dota_openstats:1.2.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ACD280B2-80D4-4BA3-95F0-16E04EEDAFE6"
},
{
"criteria": "cpe:2.3:a:neubivljiv:dota_openstats:1.2.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5CDC607D-1EF6-4444-BF3A-B295FAF84C49"
},
{
"criteria": "cpe:2.3:a:neubivljiv:dota_openstats:1.2.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "416031C2-B8C2-4708-AAAB-7AD413688F31"
},
{
"criteria": "cpe:2.3:a:neubivljiv:dota_openstats:1.2.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "222EC757-0C61-47CC-86E6-0E7A692698BE"
},
{
"criteria": "cpe:2.3:a:neubivljiv:dota_openstats:1.2.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7194ED1B-3C6C-4620-85D3-E4D7E0F92858"
},
{
"criteria": "cpe:2.3:a:neubivljiv:dota_openstats:1.2.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C7158E29-922F-437E-87C2-A19A1B9ABC01"
},
{
"criteria": "cpe:2.3:a:neubivljiv:dota_openstats:1.2.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B86B51D2-9EDD-416B-900C-8DC982A032C3"
},
{
"criteria": "cpe:2.3:a:neubivljiv:dota_openstats:1.3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3EB1AECB-B3BE-4416-B378-4D41CDDD3045"
},
{
"criteria": "cpe:2.3:a:neubivljiv:dota_openstats:1.3.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3535DEA8-69B6-4004-BD93-3A3D00BA9027"
},
{
"criteria": "cpe:2.3:a:neubivljiv:dota_openstats:1.3.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F65856BD-BF66-43BE-BFF7-83056FF17232"
},
{
"criteria": "cpe:2.3:a:neubivljiv:dota_openstats:1.3.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E102D463-347A-421E-9B9A-9055AB1C1645"
},
{
"criteria": "cpe:2.3:a:neubivljiv:dota_openstats:1.3.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CFE4D39A-2844-4D9D-8BF9-77FEB842344A"
},
{
"criteria": "cpe:2.3:a:neubivljiv:dota_openstats:1.3.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "762F4065-CB6A-4910-849A-18746A666C96"
},
{
"criteria": "cpe:2.3:a:neubivljiv:dota_openstats:1.3.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "563B5D90-4B99-493A-83AE-747A84BA310C"
},
{
"criteria": "cpe:2.3:a:neubivljiv:dota_openstats:1.3.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FCDCEE5F-EBBF-45DC-924C-08DC7261AD11"
},
{
"criteria": "cpe:2.3:a:neubivljiv:dota_openstats:1.3.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1AF1E99D-AF51-4332-81D8-E2383E3917B4"
}
],
"operator": "OR"
}
]
}
]