Unrated severityNVD Advisory· Published Oct 25, 2012· Updated Apr 29, 2026
CVE-2011-5218
CVE-2011-5218
Description
SQL injection vulnerability in DotA OpenStats 1.3.9 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.
Affected products
21cpe:2.3:a:neubivljiv:dota_openstats:*:*:*:*:*:*:*:*+ 20 more
- cpe:2.3:a:neubivljiv:dota_openstats:*:*:*:*:*:*:*:*range: <=1.3.9
- cpe:2.3:a:neubivljiv:dota_openstats:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:neubivljiv:dota_openstats:1.1.9:*:*:*:*:*:*:*
- cpe:2.3:a:neubivljiv:dota_openstats:1.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:neubivljiv:dota_openstats:1.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:neubivljiv:dota_openstats:1.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:neubivljiv:dota_openstats:1.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:neubivljiv:dota_openstats:1.2.5:*:*:*:*:*:*:*
- cpe:2.3:a:neubivljiv:dota_openstats:1.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:neubivljiv:dota_openstats:1.2.7:*:*:*:*:*:*:*
- cpe:2.3:a:neubivljiv:dota_openstats:1.2.8:*:*:*:*:*:*:*
- cpe:2.3:a:neubivljiv:dota_openstats:1.2.9:*:*:*:*:*:*:*
- cpe:2.3:a:neubivljiv:dota_openstats:1.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:neubivljiv:dota_openstats:1.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:neubivljiv:dota_openstats:1.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:neubivljiv:dota_openstats:1.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:neubivljiv:dota_openstats:1.3.4:*:*:*:*:*:*:*
- cpe:2.3:a:neubivljiv:dota_openstats:1.3.5:*:*:*:*:*:*:*
- cpe:2.3:a:neubivljiv:dota_openstats:1.3.6:*:*:*:*:*:*:*
- cpe:2.3:a:neubivljiv:dota_openstats:1.3.7:*:*:*:*:*:*:*
- cpe:2.3:a:neubivljiv:dota_openstats:1.3.8:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- www.exploit-db.com/exploits/18250nvdExploit
- www.securityfocus.com/bid/51110nvdExploit
- secunia.com/advisories/47261nvdVendor Advisory
- osvdb.org/77944nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/71879nvd
News mentions
0No linked articles in our index yet.