CVE-2005-4055

Опубликовано: 07 дек. 2005

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

SQL injection vulnerability in index.php in Cars Portal 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) page and (2) car parameters.

Ссылки

http://pridels0.blogspot.com/2005/12/cars-portal-v1x-sql-injection.html
http://secunia.com/advisories/17914
Vendor Advisory
http://www.osvdb.org/21482
http://www.securityfocus.com/bid/15747
http://www.vupen.com/english/advisories/2005/2747
https://exchange.xforce.ibmcloud.com/vulnerabilities/23428
http://pridels0.blogspot.com/2005/12/cars-portal-v1x-sql-injection.html
http://secunia.com/advisories/17914
Vendor Advisory
http://www.osvdb.org/21482
http://www.securityfocus.com/bid/15747
http://www.vupen.com/english/advisories/2005/2747
https://exchange.xforce.ibmcloud.com/vulnerabilities/23428

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cars_portal:cars_portal:*:*:*:*:*:*:*:*

Версия до 1.1 (включая)

EPSS

Процентиль: 67%

0.00542

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-6r4v-c2fc-3c83

github

почти 4 года назад