6.4
CVE-2002-0932
- EPSS 1.25%
- Veröffentlicht 04.10.2002 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:58:24
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginSQL injection vulnerability in index.php for MyHelpDesk 20020509, and possibly other versions, allows remote attackers to conduct unauthorized activities via SQL code in the "id" parameter for the operations (1) detailticket, (2) editticket, or (3) updateticketlog.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Luis Bernardo ≫ Myhelpdesk Version <= 2002-05-09
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.25% | 0.655 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.4 | 10 | 4.9 |
AV:N/AC:L/Au:N/C:P/I:P/A:N
|
http://archives.neohapsis.com/archives/bugtraq/2002-06/0057.html
http://www.iss.net/security_center/static/9321.php
http://www.securityfocus.com/bid/4971