CVE-2005-0474

Опубликовано: 30 мар. 2005

Источник: debian

EPSS Низкий

Описание

SQL injection vulnerability in the user_valid_crypt function in user.php in WebCalendar 0.9.45 allows remote attackers to execute arbitrary SQL commands via an encoded webcalendar_session cookie.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
webcalendar	fixed	0.9.45-3		package

EPSS

Процентиль: 67%

0.00561

Низкий

Связанные уязвимости

CVE-2005-0474

ubuntu

больше 20 лет назад

SQL injection vulnerability in the user_valid_crypt function in user.php in WebCalendar 0.9.45 allows remote attackers to execute arbitrary SQL commands via an encoded webcalendar_session cookie.

CVE-2005-0474

nvd

больше 20 лет назад

SQL injection vulnerability in the user_valid_crypt function in user.php in WebCalendar 0.9.45 allows remote attackers to execute arbitrary SQL commands via an encoded webcalendar_session cookie.

GHSA-4mmm-jj36-wmc5

github

больше 3 лет назад

SQL injection vulnerability in the user_valid_crypt function in user.php in WebCalendar 0.9.45 allows remote attackers to execute arbitrary SQL commands via an encoded webcalendar_session cookie.

EPSS

Процентиль: 67%

0.00561

Низкий