Lucene search

K
cve[email protected]CVE-2005-2445
HistoryAug 03, 2005 - 4:00 a.m.

CVE-2005-2445

2005-08-0304:00:00
web.nvd.nist.gov
35
cve-2005-2445
sql injection
viewprd.asp
product cart 2.6
remote attackers
nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.4 High

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

83.0%

SQL injection vulnerability in viewPrd.asp in Product Cart 2.6 allows remote attackers to execute arbitrary SQL commands via the idcategory parameter.

Affected configurations

NVD
Node
early_impactproduct_cartMatch2.6

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.4 High

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

83.0%

Related for CVE-2005-2445