{"vuid":"VU#246310","idnumber":"246310","name":"Parodia blind SQL injection vulnerability","keywords":["Parodia","SQL Injection"],"overview":"The Parodia job board software is vulnerable to a blind SQL injection vulnerability. Parodia 6.8 and earlier versions are reported to be affected.","clean_desc":"Parodia is an ASP based job board application used for recruitment web sites. The Parodia software fails to properly sanitize SQL queries, which makes it vulnerable to a blind SQL injection attack.","impact":"A remote unauthenticated attacker may be able to compromise sensitive information.","resolution":"Apply an Update Parodia version 6.809 has addressed this vulnerability. Parodia users should contact the vendor directly to receive the latest version.","workarounds":"","sysaffected":"","thanks":"Thanks to Carlos Mario Penagos Hollmann of Synapse Information Technology for reporting this vulnerability.","author":"This document was written by Jared Allar.","public":["h","t","t","p",":","/","/","w","w","w",".","p","a","r","o","d","i","a",".","n","e","t","/"],"cveids":[""],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2011-06-03T12:11:12Z","publicdate":"2011-06-27T00:00:00Z","datefirstpublished":"2011-06-27T13:46:31Z","dateupdated":"2011-06-27T13:46:32Z","revision":9,"vrda_d1_directreport":"1","vrda_d1_population":"2","vrda_d1_impact":"2","cam_widelyknown":"1","cam_exploitation":"7","cam_internetinfrastructure":"9","cam_population":"5","cam_impact":"8","cam_easeofexploitation":"10","cam_attackeraccessrequired":"15","cam_scorecurrent":"1.9125","cam_scorecurrentwidelyknown":"4.05","cam_scorecurrentwidelyknownexploited":"5.5125","ipprotocol":"","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":1.9125,"vulnote":null}