CVE-2010-2462: Tomacero OroHYIP 1 SQL Injection Vulnerability

Vulnerability Information CVE ID: CVE-2010-2462 CVSS V2.0 Base Score: 7.5 CVSS V2.0 Temporal Score: 7.1 Vulnerability Details Vulnerability Title: OroHYIP withdraw fail Ecosystem Impact: Data Manipulation Remediation Information: No remedy available as of September 1, 2014 CVSS V2.0 Detailed Ratings Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None Confidentiality Impact (C): Partial Integrity Impact (I): Partial Availability Impact (A): Partial CVSS V2.0 Temporal Metrics Exploitability (E): High Remediation Level (RL): Unavailable Report Confidence (RC): Uncorroborated Affected Products Affected Product: Tomacero OroHYIP 1 Dependent Products: None found External Links 1. Offensive Security Exploit Database (06-20-2010) 2. Tomacero Web site 3. BID-40992 4. CVE-2010-2462 Discovery and Reporting Discovery Date: Jun 12, 2007 Discovery Details: Web security issue involving SQL Injection

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2010-2462: Tomacero OroHYIP 1 SQL Injection Vulnerability