Lucene search

[email protected]CVE-2004-1821

HistoryMay 10, 2005 - 4:00 a.m.

CVE-2004-1821

2005-05-1004:00:00

[email protected]

web.nvd.nist.gov

cve

4nalbum

php-nuke

sql injection

vulnerability

database operations

8.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.012 Low

EPSS

Percentile

85.3%

JSON

SQL injection vulnerability in 4nalbum 0.92 for PHP-Nuke 6.5 through 7.0 allows remote attackers to gain privileges or perform unauthorized database operations via the gid parameter.

Affected configurations

NVD

Node

warpspeed4nalbum_moduleMatch0.92

CPENameOperatorVersion
warpspeed:4nalbum_modulewarpspeed 4nalbum moduleeq0.92

CPE	Name	Operator	Version
warpspeed:4nalbum_module	warpspeed 4nalbum module	eq	0.92

References

marc.info/?l=bugtraq&m=107937780222514&w=2

secunia.com/advisories/11134

www.osvdb.org/4294

www.securityfocus.com/bid/9881

exchange.xforce.ibmcloud.com/vulnerabilities/15498

8.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.012 Low

EPSS

Percentile

85.3%

JSON

Related for CVE-2004-1821

nvd1 cvelist1