CVE-2005-2473

EPSS 2.01%
Veröffentlicht 05.08.2005 04:00:00
Zuletzt bearbeitet 16.06.2026 22:14:57
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Multiple SQL injection vulnerabilities in ChurchInfo allow remote attackers to execute arbitrary SQL commands via the PersonID parameter to (1) PersonView.php, (2) MemberRoleChange.php, (3) PropertyAssign.php, (4) WhyCameEditor.php, (5) GroupPropsEditor.php, (6) Reports/PDFLabel.php, or (7) UserDelete.php, (8) DepositSlipID parameter to DepositSlipEditor.php, (9) QueryID parameter to QueryView.php, GroupID parameter to (10) GroupView.php, (11) GroupMemberList.php, (12) MemberRoleChange.php, (13) GroupDelete.php, (14) /Reports/ClassAttendance.php, or (15) /Reports/GroupReport.php, (16) PropertyID parameter to PropertyEditor.php, FamilyID parameter to (17) Canvas05Editor.php, (18) CanvasEditor.php, or (19) FamilyView.php, or (20) PledgeID parameter to PledgeDetails.php.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 27

NVD 9 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Churchinfo ≫ Churchinfo Version1.1.1

Churchinfo ≫ Churchinfo Version1.1.2

Churchinfo ≫ Churchinfo Version1.1.3

Churchinfo ≫ Churchinfo Version1.1.4

Churchinfo ≫ Churchinfo Version1.1.5

Churchinfo ≫ Churchinfo Version1.1.6

Churchinfo ≫ Churchinfo Version1.2.0

Churchinfo ≫ Churchinfo Version1.2.1

Churchinfo ≫ Churchinfo Version1.2.2

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	2.01%	0.783

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

Es wurden noch keine Informationen zu CWE veröffentlicht.

http://marc.info/?l=bugtraq&m=112291550713546&w=2

http://secunia.com/advisories/16292

http://securitytracker.com/id?1014617

http://www.osvdb.org/18408

http://www.osvdb.org/18409

http://www.osvdb.org/18410

http://www.osvdb.org/18411

http://www.osvdb.org/18412

http://www.osvdb.org/18413

http://www.osvdb.org/18414

http://www.osvdb.org/18415

http://www.osvdb.org/18416

http://www.osvdb.org/18417

http://www.osvdb.org/18418

http://www.osvdb.org/18419

http://www.osvdb.org/18420

http://www.osvdb.org/18421

http://www.osvdb.org/18422

http://www.osvdb.org/18423

http://www.osvdb.org/18424

http://www.osvdb.org/18427

http://www.osvdb.org/18428

http://www.securityfocus.com/bid/14438

https://exchange.xforce.ibmcloud.com/vulnerabilities/21647

https://nvd.nist.gov/vuln/detail/CVE-2005-2473

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2005-2473

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2005-2473

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2005-2473