CVE-2005-4030

Опубликовано: 06 дек. 2005

Источник: nvd

CVSS2: 5.1

EPSS Низкий

Описание

SQL injection vulnerability in Quicksilver Forums before 1.5.1 allows remote attackers to execute arbitrary SQL commands via the HTTP_USER_AGENT header.

Ссылки

http://secunia.com/advisories/17861
Patch
Vendor Advisory
http://sourceforge.net/project/shownotes.php?release_id=375970&group_id=154354
Patch
http://www.osvdb.org/21443
http://www.securityfocus.com/bid/15710
http://www.vupen.com/english/advisories/2005/2729
http://secunia.com/advisories/17861
Patch
Vendor Advisory
http://sourceforge.net/project/shownotes.php?release_id=375970&group_id=154354
Patch
http://www.osvdb.org/21443
http://www.securityfocus.com/bid/15710
http://www.vupen.com/english/advisories/2005/2729

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:quicksilver_forums:quicksilver_forums:*:*:*:*:*:*:*:*

Версия до 1.1.5_pr1 (включая)

EPSS

Процентиль: 70%

0.00619

Низкий

5.1 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-j2xw-7659-7rj6

github

почти 4 года назад