CVE-2004-0272

2004-03-1805:00:00

mitre

www.cve.org

AI Score

7.5

Confidence

Low

EPSS

0.003

Percentile

67.8%

JSON

SQL injection vulnerability in MaxWebPortal allows remote attackers to inject arbitrary SQL code and gain sensitive information via the SendTo parameter in Personal Messages.

References

marc.info/?l=bugtraq&m=107643014606515&w=2

www.securityfocus.com/bid/9625

exchange.xforce.ibmcloud.com/vulnerabilities/15121