7.5
CVE-2005-1585
- EPSS 1.32%
- Veröffentlicht 11.05.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:13:19
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginMultiple SQL injection vulnerabilities in Quick.Forum 2.1.6 allow remote attackers to execute arbitrary SQL commands via the (1) iCategory or (2) page parameter to index.php, or (3) iCategory parameter in the query string to the forum directory.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Open Solution ≫ Quick.Forum Version2.1.6
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.32% | 0.67 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://lostmon.blogspot.com/2005/05/quickforum-topic-field-xss-and-page.html
http://secunia.com/advisories/15200
http://www.osvdb.org/16326