CVE-2004-2562

Опубликовано: 31 дек. 2004

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

SQL injection vulnerability in jobedit.asp in Leigh Business Enterprises (LBE) Web Helpdesk before 4.0.0.81 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Ссылки

http://secunia.com/advisories/12123
Patch
Vendor Advisory
http://www.lbehelpdesk.com/patch/web/history.txt
URL Repurposed
http://www.osvdb.org/8181
http://www.securiteam.com/windowsntfocus/5QP0M0ADGI.html
Exploit
Patch
http://www.securityfocus.com/bid/10773
Exploit
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/16779
http://secunia.com/advisories/12123
Patch
Vendor Advisory
http://www.lbehelpdesk.com/patch/web/history.txt
URL Repurposed
http://www.osvdb.org/8181
http://www.securiteam.com/windowsntfocus/5QP0M0ADGI.html
Exploit
Patch
http://www.securityfocus.com/bid/10773
Exploit
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/16779

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:1.2_1999-07-00:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:1.3_2000-07-00:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:1.4_2000-08-00:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.33_2001-05-00:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.35_2001-06-04:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.38_2001-06-10:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.40_2001-07-21:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.41_2001-08-27:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.43_2001-09-28:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.50:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.52:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.53:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.54:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.59:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.60:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.61:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.62:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.63:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.64:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.65:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.66:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.67:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.68:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.69:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.70:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.71:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.72:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.73:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.74:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.75:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.76:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.77:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.78:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.79:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.80:*:*:*:*:*:*:*

cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0_2001-03-00:*:*:*:*:*:*:*

EPSS

Процентиль: 80%

0.01452

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-7fhq-48rw-37c8

github

почти 4 года назад