Описание
Multiple SQL injection vulnerabilities in vTiger CRM 4.2 and earlier allow remote attackers to inject arbitrary SQL commands and bypass authentication via the (1) user_name and (2) date parameter in the HelpDesk module.
Multiple SQL injection vulnerabilities in vTiger CRM 4.2 and earlier allow remote attackers to inject arbitrary SQL commands and bypass authentication via the (1) user_name and (2) date parameter in the HelpDesk module.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-3819
- http://secunia.com/advisories/17693
- http://securitytracker.com/id?1015271
- http://www.hardened-php.net/advisory_232005.105.html
- http://www.osvdb.org/21225
- http://www.securityfocus.com/archive/1/417730/30/0/threaded
- http://www.securityfocus.com/bid/15562
- http://www.vupen.com/english/advisories/2005/2569
EPSS
Процентиль: 83%
0.01993
Низкий
CVE ID
Связанные уязвимости
nvd
около 20 лет назад
Multiple SQL injection vulnerabilities in vTiger CRM 4.2 and earlier allow remote attackers to inject arbitrary SQL commands and bypass authentication via the (1) user_name and (2) date parameter in the HelpDesk module.
EPSS
Процентиль: 83%
0.01993
Низкий