CVE-2010-5060
published 2011-11-23CVE-2010-5060: SQL injection vulnerability in Nus.php in NUs Newssystem 1.02 allows remote attackers to execute arbitrary SQL commands via the id parameter.
PriorityP345high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.21%
80.4th percentile
SQL injection vulnerability in Nus.php in NUs Newssystem 1.02 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| internet-works | nus_newssystem | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Suricata
GPL VOIP EXPLOIT SIP UDP Softphone overflow attempt
suricata·2010-09-23
CVE-2006-0189 GPL VOIP EXPLOIT SIP UDP Softphone overflow attempt
GPL VOIP EXPLOIT SIP UDP Softphone overflow attempt
Rule: alert udp $EXTERNAL_NET any -> $HOME_NET 5060 (msg:"GPL VOIP EXPLOIT SIP UDP Softphone overflow attempt"; content:"|3B|branch|3D|"; content:"a|3D|"; pcre:"/^a\x3D[^\n]{1000,}/smi"; reference:bugtraq,16213; reference:cve,2006-0189; classtype:misc-attack; sid:2100223; rev:2; metadata:created_at 2010_09_23, cve CVE_2006_0189, confidence Medium, signature_severity Informational, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2019_07_26;)
No writeups or analysis indexed.
http://packetstormsecurity.org/1003-exploits/nusnewssystem-sql.txthttp://secunia.com/advisories/38890http://www.exploit-db.com/exploits/11674http://www.securityfocus.com/bid/38620https://exchange.xforce.ibmcloud.com/vulnerabilities/56775http://packetstormsecurity.org/1003-exploits/nusnewssystem-sql.txthttp://secunia.com/advisories/38890http://www.exploit-db.com/exploits/11674http://www.securityfocus.com/bid/38620https://exchange.xforce.ibmcloud.com/vulnerabilities/56775
2011-11-23
Published