CVE-2012-0069
Published Jan 24, 2012
Last updated 7 years ago
Overview
- Description
- SQL injection vulnerability in ajax.php in Batavi before 1.2.1 allows remote attackers to execute arbitrary SQL commands via the boxToReload parameter.
- Source
- secalert@redhat.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-89
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:batavi:batavi:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B173A69D-E71F-4938-ACE1-D7C4F5651B89",
"versionEndIncluding": "1.2"
},
{
"criteria": "cpe:2.3:a:batavi:batavi:1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "18011BCF-2F44-434C-A61C-ECAB704DE0ED"
},
{
"criteria": "cpe:2.3:a:batavi:batavi:1.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A2530D9D-3B67-419F-93D2-A96A5512CFAD"
},
{
"criteria": "cpe:2.3:a:batavi:batavi:1.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2A884BD9-5976-470F-ADA7-F70E031FD85B"
},
{
"criteria": "cpe:2.3:a:batavi:batavi:1.0.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EC23A2A6-3DCD-4AFD-961F-B3EF3DD6D6D6"
},
{
"criteria": "cpe:2.3:a:batavi:batavi:1.0.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "97906F1D-8FD0-4783-9F44-174BFBF753BC"
},
{
"criteria": "cpe:2.3:a:batavi:batavi:1.0.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "022A61EC-5474-4588-9D8D-D59F11D53128"
},
{
"criteria": "cpe:2.3:a:batavi:batavi:1.0.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A1037FF1-C190-4ABA-AA39-2615C9C52976"
},
{
"criteria": "cpe:2.3:a:batavi:batavi:1.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D9798235-4595-48C5-AAB4-58841764DCFF"
},
{
"criteria": "cpe:2.3:a:batavi:batavi:1.1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B0EA4B70-6CDE-4131-A1B9-ECA1D33F1FCF"
},
{
"criteria": "cpe:2.3:a:batavi:batavi:1.1.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "731F8E45-6E9D-4E9F-955F-335E5277B98A"
}
],
"operator": "OR"
}
]
}
]