SQL Injection Vulnerabilities in iScripts AutoHoster
CVE-2013-7189

Currently unrated

Key Information:

Vendor

Iscripts

Status
Autohoster
Vendor
CVE Published:
20 December 2013

What is CVE-2013-7189?

Multiple SQL injection vulnerabilities exist in iScripts AutoHoster that could allow remote attackers to execute arbitrary SQL commands. Specifically, these vulnerabilities can be exploited through the 'cmbdomain' parameter in checktransferstatus.php, checktransferstatusbck.php, and additionalsettings.php files, as well as through the 'invno' parameter in payinvoiceothers.php. Proper input validation and sanitation measures should be implemented to mitigate these risks and protect the application from potential exploitation.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://osvdb.org/101049
vdb-entryx_refsource_OSVDB
https://exchange.xforce.ibmcloud.com/vulnerabilities/89816
vdb-entryx_refsource_XF
http://seclists.org/fulldisclosure/2013/Dec/121
mailing-listx_refsource_FULLDISC

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.