6.8
CVSSv2

CVE-2012-3350

Published: 12/07/2012 Updated: 21/11/2024

Vulnerability Summary

SQL injection vulnerability in index.php in Webmatic 3.1.1 allows remote malicious users to execute arbitrary SQL commands via the Referer HTTP header.

Vulnerable Product Search on Vulmon Subscribe to Product

valarsoft webmatic 3.1.1

Exploits

Advisory ID: HTB23096 Product: Webmatic Vendor: valarsoftcom Vulnerable Version(s): 311 and probably prior Tested Version: 311 Vendor Notification: 13 June 2012 Public Disclosure: 4 July 2012 Vulnerability Type: Blind SQL Injection CVE Reference: CVE-2012-3350 CVSSv2 Base Score: 75 (AV:N/AC:L/Au:N/C:P/I:P/A:P) Risk Level: High Discovered ...
Webmatic version 311 suffers from a remote blind SQL injection vulnerability ...