CVE-2005-4382 in Community Enterpriseinfo

Summary

SQL injection vulnerability in CitySoft Community Enterprise 4.x allows remote attackers to execute arbitrary SQL commands via the (1) nodeID, (2) pageID, (3) ID, and (4) parentid parameter to index.cfm; and (5) documentFormatId parameter to document/docWindow.cfm.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

12/20/2005

Disclosure

12/19/2005

CPE

ready

CVSS

7.3

EPSS

0.00816

Activities

Very Low

Sources

MITREhttps://www.cve.org/CVERecord?id=CVE-2005-4382
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2005-4382
CVE Detailshttps://www.cvedetails.com/cve/CVE-2005-4382/

PreviousOverviewNext

Want to know what is going to be exploited?

We predict KEV entries!