Vulnerability Description
SQL injection vulnerability in matchdb.php in Elite Gaming Ladders 3.5 and earlier allows remote attackers to execute arbitrary SQL commands via the match parameter.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Eliteladders | Elite Gaming Ladders | <= 3.5 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/36732Vendor Advisory
- http://www.exploit-db.com/exploits/12158Exploit
- http://www.securityfocus.com/bid/39625Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/57763
- http://secunia.com/advisories/36732Vendor Advisory
- http://www.exploit-db.com/exploits/12158Exploit
- http://www.securityfocus.com/bid/39625Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/57763
FAQ
What is CVE-2010-5016?
CVE-2010-5016 is a vulnerability with a CVSS score of 7.5 (HIGH). SQL injection vulnerability in matchdb.php in Elite Gaming Ladders 3.5 and earlier allows remote attackers to execute arbitrary SQL commands via the match parameter.
How severe is CVE-2010-5016?
CVE-2010-5016 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-5016?
Check the references section above for vendor advisories and patch information. Affected products include: Eliteladders Elite Gaming Ladders.