CVE-2004-2218

Опубликовано: 31 дек. 2004

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

SQL injection vulnerability in pmwh.php in PHPMyWebHosting 0.3.4 and earlier allows remote attackers to modify SQL statements via the password parameter.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2004-08/0207.html
Exploit
http://archives.neohapsis.com/archives/bugtraq/2004-09/0247.html
Patch
http://www.osvdb.org/8976
http://www.securityfocus.com/bid/10942
Exploit
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/17005
http://archives.neohapsis.com/archives/bugtraq/2004-08/0207.html
Exploit
http://archives.neohapsis.com/archives/bugtraq/2004-09/0247.html
Patch
http://www.osvdb.org/8976
http://www.securityfocus.com/bid/10942
Exploit
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/17005

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:phpmywebhosting:phpmywebhosting:*:*:*:*:*:*:*:*

Версия до 0.3.4 (включая)

EPSS

Процентиль: 74%

0.00817

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-gj69-h5cv-cq89

github

почти 4 года назад