CVE-2012-4055

Uiga Fan Club - SQL Injection

Title source: rule
STIX 2.1

Description

SQL injection vulnerability in index2.php in Uiga Fan Club allows remote attackers to execute arbitrary SQL commands via the p parameter.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Farbod Mahini · textwebappsphp
https://www.exploit-db.com/exploits/37120

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/75288
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/53295

Scores

EPSS 0.0045
EPSS Percentile 63.6%

Details

CWE
CWE-89
Status published
Products (1)
uiga/fan_club
Published Jul 25, 2012
Tracked Since Feb 18, 2026