CVE-2008-2995

2008-07-0317:47:00

mitre

www.cve.org

8.5 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

28.0%

JSON

Multiple SQL injection vulnerabilities in PHPEasyData 1.5.4 allow remote attackers to execute arbitrary SQL commands via (1) the annuaire parameter to annuaire.php or (2) the username field in admin/login.php.

References

securityreason.com/securityalert/3969

www.securityfocus.com/archive/1/493273/100/0/threaded

www.securityfocus.com/bid/29659