CVE-2014-3973

Published Jun 5, 2014
Last updated 3 months ago
CVSS info 7.5
Overview

Description: Multiple SQL injection vulnerabilities in FrontAccounting (FA) before 2.3.21 allow remote attackers to execute arbitrary SQL commands via unspecified vectors.
Source: cve@mitre.org
NVD status: Modified
Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P
Weaknesses

nvd@nist.gov: CWE-89
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BA0EF886-52CE-49E3-AFA1-FB056ED830B5",
            "versionEndIncluding": "2.3.20"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3:beta:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2D0C0A5F-9E10-4872-8E75-F94E42C9B2BD"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3:rc:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EDAC3E5C-4B4C-4E44-981B-2754C09CC540"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9527C423-05A0-4061-ADA8-9334E891D94C"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8AD1DBE6-04F6-45F8-B219-4EE01061379C"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3:rc3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A0077EE-1CE3-476D-BA15-77F503DE3517"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3.0:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D0A7A15F-FB86-4027-A19F-6F40288A2B34"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0CB4937B-C988-49A1-B3C8-0941B10E8F11"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B49FF672-653B-48C6-8DF1-0549810AC42F"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A4D80574-9265-48D8-8201-199158104A4C"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ED439C28-A3F2-48E4-A67D-4182453755BB"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CD6D4A60-FFBC-4317-AA62-2480BB3180FD"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6BC73F38-69BE-41B9-B1A7-3EBE7A931336"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "718B9CB0-6366-4B6C-A837-EE00977C8BE9"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "432719A2-CEE7-4707-8FA2-EC387C65DC16"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "29392769-54A0-44E0-BBF8-DA2303EFD7E8"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ED2270A4-65B0-4EE6-BE0D-3D2989281FE1"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AA7C2598-B831-4D38-9E35-82BF8B168EAB"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B9D69F63-5408-4E83-A297-7F8DB1342616"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F5C89BC6-0B36-469D-8F4C-6F3345D42FE7"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7915FC8E-4A15-4708-82FD-3E53E108D0C3"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C2F5E7D5-2969-4312-8533-503B263B5AC6"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C0E542A-5ED3-46BF-99FC-E164764F329E"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "031B1B94-FC6E-4945-9277-326192F36F9A"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F86BE72C-23A9-43A4-818F-E90B9F7B24C7"
          },
          {
            "criteria": "cpe:2.3:a:frontaccounting:frontaccounting:2.3.19:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "597A40DF-D937-419E-9772-81C755454EF6"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
