CVE-2012-1294

Description

SQL injection vulnerability in CONTIMEX Impulsio CMS allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.

Predictions

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

References

• http://packetstormsecurity.org/files/109849/Impulsio-CMS-SQL-Injection.html
• http://www.securityfocus.com/bid/52063
• https://exchange.xforce.ibmcloud.com/vulnerabilities/73303
• http://packetstormsecurity.org/files/109849/Impulsio-CMS-SQL-Injection.html
• http://www.securityfocus.com/bid/52063
• https://exchange.xforce.ibmcloud.com/vulnerabilities/73303

CWEs

CWE-89