7.5
CVE-2005-3408
- EPSS 1.32%
- Veröffentlicht 01.11.2005 12:47:00
- Zuletzt bearbeitet 16.06.2026 22:16:54
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginSQL injection vulnerability in news.php in gCards version 1.43 allows remote attackers to execute arbitrary SQL commands via the limit parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Greg Neustaetter ≫ Gcards Version1.43
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.32% | 0.672 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://secunia.com/advisories/17353
http://securitytracker.com/id?1015106
http://www.fr33d0m.net/content-1783.html
http://www.osvdb.org/20329
http://www.securityfocus.com/bid/15216
http://www.vupen.com/english/advisories/2005/2223
https://exchange.xforce.ibmcloud.com/vulnerabilities/22884