Lucene search
HistoryMay 02, 2005 - 4:00 a.m.
CVE-2005-0929
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.4
Confidence
Low
EPSS
0.007
Percentile
81.0%
SQL injection vulnerability in PhotoPost PHP Pro 5.x may allow remote attackers to execute arbitrary SQL commands via (1) the sl parameter to showmembers.php or (2) the photo parameter to showphoto.php.
Affected configurations
Node
photopostphotopost_php_proMatch5.0_rc3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| photopost | photopost_php_pro | 5.0_rc3 | cpe:2.3:a:photopost:photopost_php_pro:5.0_rc3:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2005-0929
2005-03-29 05:00:00
exploitdb
exploitdb
PhotoPost Pro 5.1 - 'showmembers.php?sl' SQL Injection
2005-03-28 00:00:00
PhotoPost Pro 5.1 - 'showphoto.php?photo' SQL Injection
2005-03-28 00:00:00
PhotoPost PHP 4.6.5 - 'ecard.php' SQL Injection
2010-07-23 00:00:00
cve
cve
CVE-2005-0929
2005-05-02 04:00:00
nessus
nessus
PhotoPost < 5.1 Multiple Input Validation Vulnerabilities
2005-03-30 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.4
Confidence
Low
EPSS
0.007
Percentile
81.0%
Related for NVD:CVE-2005-0929