cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2012-2171,https://securityvulnerability.io/vulnerability/CVE-2012-2171,,SQL injection vulnerability in ModuleServlet.do in the Storage Manager Profiler in IBM System Storage DS Storage Manager before 10.83.xx.18 on DS Series devices allows remote authenticated users to execute arbitrary SQL commands via the selectedModuleOnly parameter in a state_viewmodulelog action to the ModuleServlet URI.,IBM,"Ds Storage Manager Host Software,Ds4100,Ds4200,Ds4300,Ds4400,Ds4500,Ds4700,Ds4800,System Storage Dcs3700 Storage Subsystem,System Storage Ds3200,System Storage Ds3300,System Storage Ds3400,System Storage Ds3512,System Storage Ds3524,System Storage Ds3950 Express,System Storage Ds5020 Disk Controller,System Storage Ds5100 Storage Controller,System Storage Ds5300 Storage Controller",,,0.0013000000035390258,false,,false,false,false,,,false,false,,2012-06-22T10:00:00.000Z,0
CVE-2012-2172,https://securityvulnerability.io/vulnerability/CVE-2012-2172,,Cross-site scripting (XSS) vulnerability in SoftwareRegistration.do in the Storage Manager Profiler in IBM System Storage DS Storage Manager before 10.83.xx.18 on DS Series devices allows remote attackers to inject arbitrary web script or HTML via the updateRegn parameter.,IBM,"Ds Storage Manager Host Software,Ds4100,Ds4200,Ds4300,Ds4400,Ds4500,Ds4700,Ds4800,System Storage Dcs3700 Storage Subsystem,System Storage Ds3200,System Storage Ds3300,System Storage Ds3400,System Storage Ds3512,System Storage Ds3524,System Storage Ds3950 Express,System Storage Ds5020 Disk Controller,System Storage Ds5100 Storage Controller,System Storage Ds5300 Storage Controller",,,0.0033599999733269215,false,,false,false,false,,,false,false,,2012-06-22T10:00:00.000Z,0