Lucene search

K
cve[email protected]CVE-2004-0065
HistoryFeb 17, 2004 - 5:00 a.m.

CVE-2004-0065

2004-02-1705:00:00
NVD-CWE-Other
web.nvd.nist.gov
20
cve-2004-0065
phpgedview
sql injection
timeline.php
placelist.php
nvd

9.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

60.3%

Multiple SQL injection vulnerabilities in phpGedView before 2.65 allow remote attackers to execute arbitrary SQL via (1) timeline.php and (2) placelist.php.

CPENameOperatorVersion
phpgedview:phpgedviewphpgedviewle2.65

9.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

60.3%