Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
NicecoderIdesk

2 matches found

CVE
CVEadded 2005/11/26 10:0 p.m.51 views

CVE-2005-3843

CVE-2005-3843 describes an SQL injection in Nicecoder iDesk 1.0, specifically in faq.php via the cat_id parameter, allowing remote attackers to execute arbitrary SQL commands. The connected documents confirm the vulnerable component (faq.php, cat_id) and the impact (arbitrary SQL execution); no e...

7.5CVSS8.4AI score0.00816EPSS
CVE
CVEadded 2010/01/18 8:0 p.m.41 views

CVE-2009-4624

CVE-2009-4624 affects Nicecoder iDesk via a SQL injection in download.php that is exploitable through the cat_id parameter. The vulnerability is in the application layer where user-supplied cat_id can cause arbitrary SQL execution, with impact described as arbitrary SQL commands being run by an a...

7.5CVSS8.6AI score0.00816EPSS
Web