Lucene search
MitreCVE-2005-0410HistoryFeb 16, 2005 - 5:00 a.m.
CVE-2005-0410
2005-02-1605:00:00
mitre
web.nvd.nist.gov
22
cve-2005-0410
sql injection
citrusdb
vulnerability
remote attackers
csv file
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
7.5
Confidence
Low
EPSS
0.002
Percentile
56.1%
SQL injection vulnerability in importcc.php for CitrusDB 0.3.6 and earlier allows remote attackers to inject data via the fields of a CSV file.
Affected configurations
Node
citrusdbcitrusdbRange≤0.3.6
Related
nvd
nvd
CVE-2005-0410
2005-02-14 05:00:00
securityvulns
securityvulns
[Full-Disclosure] Advisory: SQL-Injection in CitrusDB
2005-02-15 00:00:00
[Full-Disclosure] Advisory: Upload Authorization bypass in CitrusDB
2005-02-15 00:00:00
cvelist
cvelist
CVE-2005-0410
2005-02-16 05:00:00
exploitdb
exploitdb
CitrusDB 0.3.6 - 'importcc.php' CSV File SQL Injection
2005-02-15 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
7.5
Confidence
Low
EPSS
0.002
Percentile
56.1%
Related for CVE-2005-0410