Lucene search
HistoryNov 06, 2005 - 11:02 a.m.
CVE-2005-3509
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.4
Confidence
Low
EPSS
0.003
Percentile
65.5%
Multiple SQL injection vulnerabilities in JPortal allow remote attackers to execute arbitrary SQL commands via (1) banner.php or the id parameter to (2) print.php, (3) comment.php, and (4) news.php.
Affected configurations
Node
jportaljportal_web_portalMatch2.2.1
ORjportaljportal_web_portalMatch2.3.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| jportal | jportal_web_portal | 2.2.1 | cpe:2.3:a:jportal:jportal_web_portal:2.2.1:*:*:*:*:*:*:* |
| jportal | jportal_web_portal | 2.3.1 | cpe:2.3:a:jportal:jportal_web_portal:2.3.1:*:*:*:*:*:*:* |
Related
exploitdb
exploitdb
JPortal Web Portal 2.2.1/2.3.1 - 'comment.php' SQL Injection
2005-11-04 00:00:00
JPortal Web Portal 2.2.1/2.3.1 - 'news.php' SQL Injection
2005-11-04 00:00:00
cvelist
cvelist
CVE-2005-3509
2005-11-06 11:00:00
CVE-2008-6451
2009-03-13 10:00:00
cve
cve
CVE-2005-3509
2005-11-06 11:02:00
CVE-2008-6451
2009-03-13 10:30:00
prion
prion
Sql injection
2009-03-13 10:30:00
nvd
nvd
CVE-2008-6451
2009-03-13 10:30:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.4
Confidence
Low
EPSS
0.003
Percentile
65.5%
Related for NVD:CVE-2005-3509