7.5
CVE-2005-4234
- EPSS 1.16%
- Veröffentlicht 14.12.2005 11:03:00
- Zuletzt bearbeitet 16.06.2026 22:18:24
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginSQL injection vulnerability in gallery.php in EncapsGallery 1.0.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Powerdev ≫ Encapsgallery Version <= 1.0.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.16% | 0.631 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://pridels0.blogspot.com/2005/12/encapsgallery-sql-inj-vuln.html
http://secunia.com/advisories/18021
http://www.osvdb.org/21696
http://www.securityfocus.com/bid/15836
http://www.vupen.com/english/advisories/2005/2878