7.5
CVE-2005-3395
- EPSS 2.54%
- Veröffentlicht 01.11.2005 12:47:00
- Zuletzt bearbeitet 16.06.2026 22:16:53
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
SQL injection vulnerability in Invision Gallery 2.0.3 allows remote attackers to execute arbitrary SQL commands via the st parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Invision Power Services ≫ Invision Gallery Version2.0.3
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.54% | 0.83 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://secunia.com/advisories/17375
http://www.osvdb.org/20419
http://www.securityfocus.com/archive/1/415297
http://www.securityfocus.com/bid/15240
http://www.vupen.com/english/advisories/2005/2257
https://exchange.xforce.ibmcloud.com/vulnerabilities/22928