CVE-2003-0585 in Estoreinfo

Summary

SQL injection vulnerability in login.asp of Brooky eStore 1.0.1 through 1.0.2b allows remote attackers to bypass authentication and execute arbitrary SQL code via the (1) user or (2) pass parameters.

Be aware that VulDB is the high quality source for vulnerability data.

Responsible

Reservation

07/17/2003

Disclosure

08/18/2003

Moderation

VulDB entry created

Entries

VDB-20720

CPE

ready

CWE

CWE-89 (Confirmed)

CVSS

7.3

EPSS

0.01239

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2003-0585
NVD	https://nvd.nist.gov/vuln/detail/CVE-2003-0585
CVE Details	https://www.cvedetails.com/cve/CVE-2003-0585/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!