Lucene search
MitreCVE-2005-1005HistoryMay 02, 2005 - 4:00 a.m.
CVE-2005-1005
2005-05-0204:00:00
mitre
web.nvd.nist.gov
21
cve-2005-1005
profitcode payprocart
remote attackers
authentication bypass
admin control panel
administrative privileges
hex-encoded
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
Low
EPSS
0.032
Percentile
91.2%
ProfitCode PayProCart 3.0 allows remote attackers to bypass authentication and gain administrative privileges to the admin control panel, as demonstrated via a direct request to adminshop/index.php with hex-encoded … sequences in the ftoedit parameter.
Affected configurations
Node
profitcodepayprocartMatch3.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| profitcode | payprocart | 3.0 | cpe:2.3:a:profitcode:payprocart:3.0:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2005-1005
2005-04-07 04:00:00
nvd
nvd
CVE-2005-1005
2005-05-02 04:00:00
exploitdb
exploitdb
profitcode software payprocart 3.0 - Directory Traversal
2005-04-05 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.5
Confidence
Low
EPSS
0.032
Percentile
91.2%
Related for CVE-2005-1005