exploitDog

CVE-2005-3952

Опубликовано: 01 дек. 2005

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

SQL injection vulnerability in PHP Labs Top Auction allows remote attackers to execute arbitrary SQL commands via the (1) category and (2) type parameters to viewcat.php, or (3) certain search parameters. NOTE: later a disclosure reported the affected version as 1.0.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:php_labs:top_auction:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 87%

0.03489

Низкий

7.5 High

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-xrfv-jpgw-xhww

github

почти 4 года назад

SQL injection vulnerability in PHP Labs Top Auction allows remote attackers to execute arbitrary SQL commands via the (1) category and (2) type parameters to viewcat.php, or (3) certain search parameters. NOTE: later a disclosure reported the affected version as 1.0.

EPSS

Процентиль: 87%

0.03489

Низкий

7.5 High

CVSS2

Дефекты

CWE-89