exploitDog

CVE-2002-0932

Опубликовано: 04 окт. 2002

Источник: nvd

CVSS2: 6.4

EPSS Низкий

Описание

SQL injection vulnerability in index.php for MyHelpDesk 20020509, and possibly other versions, allows remote attackers to conduct unauthorized activities via SQL code in the "id" parameter for the operations (1) detailticket, (2) editticket, or (3) updateticketlog.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2002-06/0057.html
http://www.iss.net/security_center/static/9321.php
Vendor Advisory
http://www.securityfocus.com/bid/4971
Exploit
Vendor Advisory
http://archives.neohapsis.com/archives/bugtraq/2002-06/0057.html
http://www.iss.net/security_center/static/9321.php
Vendor Advisory
http://www.securityfocus.com/bid/4971
Exploit
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:luis_bernardo:myhelpdesk:*:*:*:*:*:*:*:*

Версия до 2002-05-09 (включая)

EPSS

Процентиль: 55%

0.00329

Низкий

6.4 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-j9w6-377j-p5fc

github

почти 4 года назад

SQL injection vulnerability in index.php for MyHelpDesk 20020509, and possibly other versions, allows remote attackers to conduct unauthorized activities via SQL code in the "id" parameter for the operations (1) detailticket, (2) editticket, or (3) updateticketlog.

EPSS

Процентиль: 55%

0.00329

Низкий

6.4 Medium

CVSS2

Дефекты

NVD-CWE-Other