CVE-2013-0123

CVE Database · CVE-2013-0123

CVE-2013-0123

· N/AModified

CVSS v3.1

N/A

EPSS

1.47%

Published

Mar 21, 2013

Modified

Apr 28, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Multiple SQL injection vulnerabilities in the administration interface in ASKIA askiaweb allow remote attackers to execute arbitrary SQL commands via (1) the nHistoryId parameter to WebProd/pages/pgHistory.asp or (2) the OrderBy parameter to WebProd/pages/pgadmin.asp.

Weaknesses (CWE)

CWE-89

Affected Products (1)

askia · askiawebvulnerable

References (2)

http://www.kb.cert.org/vuls/id/406596

US Government Resource

http://www.kb.cert.org/vuls/id/406596

US Government Resource

KEV Catalog EPSS Scores Vendors All CVEs