CVE-2004-0272

2004-03-1805:00:00

mitre

www.cve.org

7.5 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

67.8%

JSON

SQL injection vulnerability in MaxWebPortal allows remote attackers to inject arbitrary SQL code and gain sensitive information via the SendTo parameter in Personal Messages.

References

marc.info/?l=bugtraq&m=107643014606515&w=2

www.securityfocus.com/bid/9625

exchange.xforce.ibmcloud.com/vulnerabilities/15121