CVE-2005-3596

Опубликовано: 16 нояб. 2005

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

SQL injection vulnerability in ASPKnowledgebase allows remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) username and (2) password fields in adminlogin.asp.

Ссылки

http://marc.info/?l=bugtraq&m=113156859811594&w=2
http://osvdb.org/20712
http://secunia.com/advisories/17517/
Vendor Advisory
http://www.securityfocus.com/bid/15364/
http://www.vupen.com/english/advisories/2005/2375
https://exchange.xforce.ibmcloud.com/vulnerabilities/23038
http://marc.info/?l=bugtraq&m=113156859811594&w=2
http://osvdb.org/20712
http://secunia.com/advisories/17517/
Vendor Advisory
http://www.securityfocus.com/bid/15364/
http://www.vupen.com/english/advisories/2005/2375
https://exchange.xforce.ibmcloud.com/vulnerabilities/23038

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:iisworks:aspknowledgebase:*:*:*:*:*:*:*:*

EPSS

Процентиль: 84%

0.02235

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-4xx5-phjh-xr95

github

почти 4 года назад