Unrated severityNVD Advisory· Published Jan 29, 2014· Updated Jun 16, 2026
CVE-2013-4887
CVE-2013-4887
Description
SQL injection vulnerability in index.php in Digital Signage Xibo 1.4.2 allows remote attackers to execute arbitrary SQL commands via the displayid parameter.
Affected products
2- cpe:2.3:a:xibosignage:xibo:1.4.2:*:*:*:*:*:*:*
- Range: <= 1.4.2
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.