7.5
CVE-2004-1668
- EPSS 1.35%
- Veröffentlicht 10.09.2004 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:08:10
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginMultiple SQL injection vulnerabilities in index.php in Subjects 2.0 Postnuke module allow remote attackers to execute arbitrary SQL commands via the (1) pageid, (2) subid, or (3) catid parameters.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Easyweb ≫ Factory Subjects Module Version2.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.35% | 0.678 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://marc.info/?l=bugtraq&m=109483089621955&w=2
http://secunia.com/advisories/12497
http://www.securityfocus.com/bid/11148
https://exchange.xforce.ibmcloud.com/vulnerabilities/17311