Lucene search

[email protected]CVE-2005-1804

HistoryOct 03, 2022 - 4:22 p.m.

CVE-2005-1804

2022-10-0316:22:43

[email protected]

web.nvd.nist.gov

npds

sql injection

security

cve-2005-1804

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.9 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

73.7%

JSON

Multiple SQL injection vulnerabilities in Net Portal Dynamic System (NPDS) 5.0 allow remote attackers to execute arbitrary SQL commands via the (1) terme parameter in the glossaire module (glossaire.php) or (2) query parameter to links.php.

Affected configurations

NVD

Node

net_portal_dynamic_systemnet_portal_dynamic_systemMatch5.0

CPENameOperatorVersion
net_portal_dynamic_system:net_portal_dynamic_systemnet portal dynamic systemeq5.0

CPE	Name	Operator	Version
net_portal_dynamic_system:net_portal_dynamic_system	net portal dynamic system	eq	5.0

References

securitytracker.com/id?1014073

www.npds.org/download.php?op=geninfo&did=115

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.9 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

73.7%

JSON

Related for CVE-2005-1804

cvelist1 nvd1