7.5

CVE-2003-0025

EPSS 1.8%
Published 17.01.2003 05:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Multiple SQL injection vulnerabilities in IMP 2.2.8 and earlier allow remote attackers to perform unauthorized database activities and possibly gain privileges via certain database functions such as check_prefs() in db.pgsql, as demonstrated using mailbox.php3.

Affected products Warnungen 0 Metrics 2 CWE 0 References 10

Data is provided by the National Vulnerability Database (NVD)

Horde ≫ Imp Version2.2

Horde ≫ Imp Version2.2.1

Horde ≫ Imp Version2.2.2

Horde ≫ Imp Version2.2.3

Horde ≫ Imp Version2.2.4

Horde ≫ Imp Version2.2.5

Horde ≫ Imp Version2.2.6

Horde ≫ Imp Version2.2.7

Horde ≫ Imp Version2.2.8

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.8%	0.812

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://marc.info/?l=bugtraq&m=104204786206563&w=2

http://secunia.com/advisories/8087

http://secunia.com/advisories/8177

http://www.debian.org/security/2003/dsa-229

Patch

Vendor Advisory

http://www.securityfocus.com/archive/1/306268

http://www.securityfocus.com/bid/6559

http://www.securitytracker.com/id?1005904

https://nvd.nist.gov/vuln/detail/CVE-2003-0025

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2003-0025

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2003-0025

EUVD