CVE-2005-1082

Sažetak

Multiple SQL injection vulnerabilities in AzDGDatingPlatinum 1.1.0 allows remote attackers to execute arbitrary SQL commands via (1) the id parameter to view.php or (2) the from parameter to members/index.php.

Reference

http://www.osvdb.org/15525
http://www.securityfocus.com/archive/1/395530
http://www.securityfocus.com/archive/1/438607/100/100/threaded
http://www.securityfocus.com/bid/13082
https://exchange.xforce.ibmcloud.com/vulnerabilities/20051
https://exchange.xforce.ibmcloud.com/vulnerabilities/27436

CVSS

Base:	7.5
Impact:	6.4
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

19-10-2018 - 15:31

Objavljeno

09-04-2005 - 04:00