CVE-2005-4606 in Database Logininformazioni

Riassunto

di MITRE

SQL injection vulnerability in check_user.asp in multiple Web Wiz products including (1) Site News 3.06 and earlier, (2) Journal 1.0 and earlier, (3) Polls 3.06 and earlier, and (4) and Database Login 1.71 and earlier allows remote attackers to execute arbitrary SQL commands via the txtUserName parameter.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

03/01/2006

Divulgazione

31/12/2005

Moderazione

accettato

Voce

VDB-27925

CPE

pronto

CWE

CWE-89 (confermato)

CVSS

7.3 (VulDB)

EPSS

0.01135

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2005-4606
NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-4606
CVE Details	https://www.cvedetails.com/cve/CVE-2005-4606/

◂ Precedente Visione D'ensemble Il prossimo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!