Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2005-3325

Опубликовано: 27 окт. 2005
Источник: ubuntu
Приоритет: medium
CVSS2: 7.5

Описание

Multiple SQL injection vulnerabilities in (1) acid_qry_main.php in Analysis Console for Intrusion Databases (ACID) 0.9.6b20 and (2) base_qry_main.php in Basic Analysis and Security Engine (BASE) 1.2, and unspecified other console scripts in these products, allow remote attackers to execute arbitrary SQL commands via the sig[1] parameter and possibly other parameters.

РелизСтатусПримечание
dapper

released

1.2.1-4
devel

released

1.2.1-4
edgy

released

1.2.1-4
feisty

released

1.2.1-4
gutsy

released

1.2.1-4
hardy

released

1.2.1-4
upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

released

0.9.6b20-13ubuntu1
devel

released

0.9.6b20-13ubuntu1
edgy

released

0.9.6b20-13ubuntu1
feisty

DNE

gutsy

released

0.9.6b20-13ubuntu1
hardy

released

0.9.6b20-13ubuntu1
upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

released

0.2.5-2
edgy

DNE

feisty

ignored

end of life, was needed
gutsy

released

0.2.5-2
hardy

released

0.2.5-2
upstream

needs-triage

Показывать по

Ссылки на источники

7.5 High

CVSS2

Связанные уязвимости

nvd логотип

CVE-2005-3325

nvd
почти 20 лет назад

Multiple SQL injection vulnerabilities in (1) acid_qry_main.php in Analysis Console for Intrusion Databases (ACID) 0.9.6b20 and (2) base_qry_main.php in Basic Analysis and Security Engine (BASE) 1.2, and unspecified other console scripts in these products, allow remote attackers to execute arbitrary SQL commands via the sig[1] parameter and possibly other parameters.

debian логотип

CVE-2005-3325

debian
почти 20 лет назад

Multiple SQL injection vulnerabilities in (1) acid_qry_main.php in Ana ...

github логотип

GHSA-3qqc-m294-6m8c

github
больше 3 лет назад

Multiple SQL injection vulnerabilities in (1) acid_qry_main.php in Analysis Console for Intrusion Databases (ACID) 0.9.6b20 and (2) base_qry_main.php in Basic Analysis and Security Engine (BASE) 1.2, and unspecified other console scripts in these products, allow remote attackers to execute arbitrary SQL commands via the sig[1] parameter and possibly other parameters.

7.5 High

CVSS2