Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-4mmr-48v9-3hxw

Опубликовано: 01 мая 2022
Источник: github
Github: Не прошло ревью

Описание

Multiple SQL injection vulnerabilities in CFMagic Magic Forum Personal 2.5 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) ForumID parameter in view_forum.cfm, and (2) ForumID, (3) Thread, and (4) ThreadID parameters in view_thread.cfm.

Multiple SQL injection vulnerabilities in CFMagic Magic Forum Personal 2.5 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) ForumID parameter in view_forum.cfm, and (2) ForumID, (3) Thread, and (4) ThreadID parameters in view_thread.cfm.

Ссылки

EPSS

Процентиль: 77%
0.01032
Низкий

CVE ID

CVE-2005-4071

Дефекты

CWE-89

Связанные уязвимости

nvd логотип

CVE-2005-4071

nvd
около 20 лет назад

Multiple SQL injection vulnerabilities in CFMagic Magic Forum Personal 2.5 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) ForumID parameter in view_forum.cfm, and (2) ForumID, (3) Thread, and (4) ThreadID parameters in view_thread.cfm.

EPSS

Процентиль: 77%
0.01032
Низкий

CVE ID

CVE-2005-4071

Дефекты

CWE-89