Описание
Multiple SQL injection vulnerabilities in eFiction 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) let parameter in a viewlist action to authors.php and (2) sid parameter to viewstory.php.
Multiple SQL injection vulnerabilities in eFiction 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) let parameter in a viewlist action to authors.php and (2) sid parameter to viewstory.php.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-4169
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23373
- http://archives.neohapsis.com/archives/bugtraq/2005-11/0301.html
- http://rgod.altervista.org/efiction2_xpl.html
- http://secunia.com/advisories/17777
- http://securitytracker.com/id?1015273
- http://www.efiction.wallflowergirl.com/forums/viewtopic.php?t=1555
- http://www.osvdb.org/21119
- http://www.osvdb.org/21121
- http://www.securityfocus.com/bid/15568
- http://www.vupen.com/english/advisories/2005/2606
EPSS
Процентиль: 78%
0.01185
Низкий
CVE ID
Связанные уязвимости
nvd
около 20 лет назад
Multiple SQL injection vulnerabilities in eFiction 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) let parameter in a viewlist action to authors.php and (2) sid parameter to viewstory.php.
EPSS
Процентиль: 78%
0.01185
Низкий