05 Fév 2015
CVE-2015-1442
Vulnerability Details : CVE-2015-1442 SQL injection vulnerability in views/zero_transact_user.php in the administrative backend in ZeroCMS 1.3.3, 1.3.2, and earlier allows remote authenticated users to execute arbitrary SQL commands via the user_id parameter in a Modify Account action. NOTE: The article_id parameter to zero_view_article.php vector is already covered by CVE-2014-4034. Publish Date : 2015-02-06 Last Update Date : 2015-02-09 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2015-1442
- Number Of Affected Versions By Product
- References For CVE-2015-1442
| |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2015-1442There are not any metasploit modules related to this vulnerability (Please visit www.metasploit.com for more information) |