Lucene search

K
cve[email protected]CVE-2005-2486
HistoryAug 07, 2005 - 4:00 a.m.

CVE-2005-2486

2005-08-0704:00:00
NVD-CWE-Other
web.nvd.nist.gov
26
sql injection
vulnerability
mod_forum
read_message.php
portailphp
remote attackers
nvd

8.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

60.3%

SQL injection vulnerability in mod_forum/read_message.php in PortailPHP allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php with the affiche parameter set to β€œForum-read_mess”, a different vulnerability than CVE-2005-1701.

CPENameOperatorVersion
portailphp:portailphpportailphpeq2.4

8.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

60.3%

Related for CVE-2005-2486