exploitDog

CVE-2005-2253

Опубликовано: 13 июл. 2005

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

SQL injection vulnerability in PhpAuction 2.5 allow remote attackers to modify SQL queries via the category parameter to adsearch.php. NOTE: there is evidence that viewnews.php may not be part of the PhpAuction product, so it is not included in this description.

Ссылки

http://secunia.com/advisories/15967
http://securitytracker.com/id?1014423
Exploit
Vendor Advisory
http://secunia.com/advisories/15967
http://securitytracker.com/id?1014423
Exploit
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:gianluca_baldo:phpauction:2.5:*:*:*:*:*:*:*

EPSS

Процентиль: 66%

0.00518

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-7545-65cx-3rpp

github

почти 4 года назад

SQL injection vulnerability in PhpAuction 2.5 allow remote attackers to modify SQL queries via the category parameter to adsearch.php. NOTE: there is evidence that viewnews.php may not be part of the PhpAuction product, so it is not included in this description.

EPSS

Процентиль: 66%

0.00518

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other