Lucene search

[email protected]CVE-2002-0999

HistoryOct 04, 2002 - 4:00 a.m.

CVE-2002-0999

2002-10-0404:00:00

CWE-89

[email protected]

web.nvd.nist.gov

care 2002

sql injection

remote attackers

unauthorized database operations

8.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

52.5%

JSON

Multiple SQL injection vulnerabilities in CARE 2002 before beta 1.0.02 allow remote attackers to perform unauthorized database operations.

CPENameOperatorVersion
care_2002:care_2002care 2002eq1.0.01
care_2002:care_2002care 2002eq1.0

CPE	Name	Operator	Version
care_2002:care_2002	care 2002	eq	1.0.01
care_2002:care_2002	care 2002	eq	1.0

References

archives.neohapsis.com/archives/bugtraq/2002-07/0128.html

www.care2x.com/modul.php?thispage=headlines&m_titel=NEWS&m_item=Headlines&lang=en

www.iss.net/security_center/static/9553.php

www.securityfocus.com/bid/5219

8.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

52.5%

JSON