CVE-2005-2902 in class-1informazioni

Riassunto

di MITRE

SQL injection vulnerability in class-1 Forum Software 0.24.4 allows remote attackers to execute arbitrary SQL commands and bypass the file extension check via SQL code in the file extension of an uploaded file.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

14/09/2005

Divulgazione

14/09/2005

Moderazione

accettato

Voce

VDB-26304

CPE

pronto

CWE

CWE-89 (confermato)

Sfruttamento

Scaricare

CVSS

7.3 (VulDB)

EPSS

0.01346

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2005-2902
NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-2902
CVE Details	https://www.cvedetails.com/cve/CVE-2005-2902/

◂ Precedente Visione D'ensemble Il prossimo ▸

Interested in the pricing of exploits?

See the underground prices here!