Lucene search

[email protected]NVD:CVE-2005-1673

HistoryMay 19, 2005 - 4:00 a.m.

CVE-2005-1673

2005-05-1904:00:00

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.4

Confidence

High

EPSS

0.002

Percentile

53.4%

JSON

Multiple SQL injection vulnerabilities in Help Center Live allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to index.php, (2) tid parameter to view.php, fid parameter to (3) download.php or (4) chat_download.php, (5) status parameter to icon.php, TICKET_tid parameter to (6) index.php or (7) view.php.

Affected configurations

Nvd

Node

ubertechelp_center_live

VendorProductVersionCPE
ubertechelp_center_live*cpe:2.3:a:ubertec:help_center_live:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ubertec	help_center_live	*	cpe:2.3:a:ubertec:help_center_live::::::::

References

www.gulftech.org/?node=research&article_id=00076-05172005

www.securityfocus.com/archive/1/398457/2005-05-15/2005-05-21/0

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.4

Confidence

High

EPSS

0.002

Percentile

53.4%

JSON

Related for NVD:CVE-2005-1673

cvelist1 cve1 nessus1 exploitpack1 exploitdb1