CVE-2018-16389: SQL Injection
First published: Wed Sep 12 2018(Updated: )
e107_admin/banlist.php in e107 2.1.8 allows SQL injection via the old_ip parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| E107 E107 | =2.1.8 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2018-16389.
What is the title of this vulnerability?
The title of this vulnerability is 'e107_admin/banlist.php in e107 2.1.8 allows SQL injection via the old_ip parameter.'
What is the severity of CVE-2018-16389?
The severity of CVE-2018-16389 is medium with a severity value of 6.5.
How does CVE-2018-16389 affect e107?
CVE-2018-16389 affects e107 version 2.1.8.
How can I fix CVE-2018-16389?
To fix CVE-2018-16389, update e107 to a version that is not affected by the vulnerability.
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/remedy
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/e107
- canonical/e107 e107
- version/e107 e107/2.1.8