Lucene search
MitreCVE-2005-0841HistoryMay 02, 2005 - 4:00 a.m.
CVE-2005-0841
2005-05-0204:00:00
mitre
web.nvd.nist.gov
32
cve-2005-0841
sql injection
phpmyfamily
remote attackers
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.7
Confidence
Low
EPSS
0.005
Percentile
76.5%
SQL injection vulnerability in (1) people.php, (2) track.php, (3) edit.php, (4) document.php, (5) census.php, (6) passthru.php and possibly other php files in phpMyFamily 1.4.0 allows remote attackers to execute arbitrary SQL commands, as demonstrated via (1) the person parameter to people.php or (2) the Login field.
Affected configurations
Node
phpmyfamilyphpmyfamilyMatch1.4
| Vendor | Product | Version | CPE |
|---|---|---|---|
| phpmyfamily | phpmyfamily | 1.4 | cpe:2.3:a:phpmyfamily:phpmyfamily:1.4:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2005-0841
2005-05-02 04:00:00
exploitdb
exploitdb
phpMyFamily 1.4.0 - Authentication Bypass
2005-03-21 00:00:00
cvelist
cvelist
CVE-2005-0841
2005-03-24 05:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.7
Confidence
Low
EPSS
0.005
Percentile
76.5%
Related for CVE-2005-0841