Lucene search
MitreCVE-2003-0557HistoryAug 18, 2003 - 4:00 a.m.
CVE-2003-0557
2003-08-1804:00:00
mitre
web.nvd.nist.gov
35
cve-2003-0557
sql injection
storefront 6.0
nvd
security vulnerability
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.8
Confidence
Low
EPSS
0.002
Percentile
54.3%
SQL injection vulnerability in login.asp for StoreFront 6.0, and possibly earlier versions, allows remote attackers to obtain sensitive user information via SQL statements in the password field.
Affected configurations
Node
lagardestorefrontRange≤6.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| lagarde | storefront | * | cpe:2.3:a:lagarde:storefront:*:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2003-0557
2003-08-18 04:00:00
cvelist
cvelist
CVE-2003-0557
2003-07-15 04:00:00
exploitdb
exploitdb
LaGarde StoreFront 5.0 Shopping Cart - 'login.asp' SQL Injection
2003-12-07 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.8
Confidence
Low
EPSS
0.002
Percentile
54.3%
Related for CVE-2003-0557