7.5
CVE-2005-4081
- EPSS 1.29%
- Veröffentlicht 08.12.2005 01:03:00
- Zuletzt bearbeitet 16.06.2026 22:18:11
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginMultiple SQL injection vulnerabilities in Alisveristr E-commerce allow remote attackers to bypass authentication and possibly execute arbitrary SQL commands via the username and password parameters in (1) the user login and (2) administrator login pages.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.29% | 0.664 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://securityreason.com/securityalert/228
http://www.osvdb.org/21622
http://www.securityfocus.com/archive/1/418510/100/0/threaded
http://www.securityfocus.com/bid/15699/
https://exchange.xforce.ibmcloud.com/vulnerabilities/23507