CVE-2013-3050

ZAPms <1.41 - SQL Injection

Title source: llm

Description

SQL injection vulnerability in ZAPms 1.41 and earlier allows remote attackers to execute arbitrary SQL commands via the pid parameter to product.

Exploits (1)

exploitdb WORKING POC VERIFIED
by NoGe · textwebappsphp
https://www.exploit-db.com/exploits/24942

References (7)

Scores

EPSS 0.0421
EPSS Percentile 88.6%

Classification

CWE
CWE-89
Status draft

Affected Products (3)

zapms/zapms < 1.41
zapms/zapms
zapms/zapms

Timeline

Published Apr 12, 2013
Tracked Since Feb 18, 2026