CVE-2015-6943

Sažetak

SQL injection vulnerability in the serendipity_checkCommentToken function in include/functions_comments.inc.php in Serendipity before 2.0.2, when "Use Tokens for Comment Moderation" is enabled, allows remote administrators to execute arbitrary SQL commands via the serendipity[id] parameter to serendipity_admin.php.

Reference

http://blog.curesec.com/article/blog/Serendipity-201-Blind-SQL-Injection-52.html
http://blog.s9y.org/archives/265-Serendipity-2.0.2-Security-Fix-Release.html
http://packetstormsecurity.com/files/133428/Serendipity-2.0.1-Blind-SQL-Injection.html
http://seclists.org/fulldisclosure/2015/Sep/10
http://www.securitytracker.com/id/1033558

CVSS

Base:	6.0
Impact:	6.4
Exploitability:	6.8

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:M/Au:S/C:P/I:P/A:P

Zadnje važnije ažuriranje

22-12-2016 - 03:00

Objavljeno

15-09-2015 - 18:59