cvelist/2010/0xxx/CVE-2010-0122.json

{
    "CVE_data_meta": {
        "ASSIGNER": "PSIRT-CNA@flexerasoftware.com",
        "ID": "CVE-2010-0122",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "n/a",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "n/a"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "n/a"
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "Multiple SQL injection vulnerabilities in Employee Timeclock Software 0.99 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameter to (a) auth.php or (b) login_action.php."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "n/a"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "38639",
                "refsource": "BID",
                "url": "http://www.securityfocus.com/bid/38639"
            },
            {
                "name": "38739",
                "refsource": "SECUNIA",
                "url": "http://secunia.com/advisories/38739"
            },
            {
                "name": "timeclock-auth-sql-injection(56799)",
                "refsource": "XF",
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/56799"
            },
            {
                "name": "http://secunia.com/secunia_research/2010-11/",
                "refsource": "MISC",
                "url": "http://secunia.com/secunia_research/2010-11/"
            },
            {
                "name": "62832",
                "refsource": "OSVDB",
                "url": "http://www.osvdb.org/62832"
            },
            {
                "name": "62831",
                "refsource": "OSVDB",
                "url": "http://www.osvdb.org/62831"
            },
            {
                "name": "20100310 Secunia Research: Employee Timeclock Software SQL Injection Vulnerabilities",
                "refsource": "BUGTRAQ",
                "url": "http://www.securityfocus.com/archive/1/509995/100/0/threaded"
            }
        ]
    }
}
- Populated repo from CVE List. 2017-10-16 12:31:07 -04:00			`{`
"-Synchronized-Data." 2019-03-17 21:40:49 +00:00			`"CVE_data_meta": {`
			`"ASSIGNER": "PSIRT-CNA@flexerasoftware.com",`
			`"ID": "CVE-2010-0122",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "n/a",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "n/a"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name": "n/a"`
			`}`
			`]`
			`}`
			`},`
			`"data_format": "MITRE",`
			`"data_type": "CVE",`
			`"data_version": "4.0",`
			`"description": {`
			`"description_data": [`
- Populated repo from CVE List. 2017-10-16 12:31:07 -04:00			`{`
"-Synchronized-Data." 2019-03-17 21:40:49 +00:00			`"lang": "eng",`
			`"value": "Multiple SQL injection vulnerabilities in Employee Timeclock Software 0.99 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameter to (a) auth.php or (b) login_action.php."`
- Populated repo from CVE List. 2017-10-16 12:31:07 -04:00			`}`
"-Synchronized-Data." 2019-03-17 21:40:49 +00:00			`]`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "n/a"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"name": "38639",`
			`"refsource": "BID",`
			`"url": "http://www.securityfocus.com/bid/38639"`
			`},`
			`{`
			`"name": "38739",`
			`"refsource": "SECUNIA",`
			`"url": "http://secunia.com/advisories/38739"`
			`},`
			`{`
			`"name": "timeclock-auth-sql-injection(56799)",`
			`"refsource": "XF",`
			`"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/56799"`
			`},`
			`{`
			`"name": "http://secunia.com/secunia_research/2010-11/",`
			`"refsource": "MISC",`
			`"url": "http://secunia.com/secunia_research/2010-11/"`
			`},`
			`{`
			`"name": "62832",`
			`"refsource": "OSVDB",`
			`"url": "http://www.osvdb.org/62832"`
			`},`
			`{`
			`"name": "62831",`
			`"refsource": "OSVDB",`
			`"url": "http://www.osvdb.org/62831"`
			`},`
			`{`
			`"name": "20100310 Secunia Research: Employee Timeclock Software SQL Injection Vulnerabilities",`
			`"refsource": "BUGTRAQ",`
			`"url": "http://www.securityfocus.com/archive/1/509995/100/0/threaded"`
			`}`
			`]`
			`}`
			`}`