Lucene search

K

MitreCVELIST:CVE-2004-2474

HistoryAug 20, 2005 - 4:00 a.m.

CVE-2004-2474

2005-08-2004:00:00

mitre

www.cve.org

2

AI Score

8.3

Confidence

Low

EPSS

0.005

Percentile

76.8%

SQL injection vulnerability in PHPNews 1.2.3 allows remote attackers to execute arbitrary SQL commands via the mid parameter to sendtofriend.php.

References

newsphp.sourceforge.net/changelog/changelog_1.24.txt

secunia.com/advisories/13300

www.osvdb.org/12119

www.securityfocus.com/bid/11748

exchange.xforce.ibmcloud.com/vulnerabilities/18233

AI Score

8.3

Confidence

Low

EPSS

0.005

Percentile

76.8%

Related for CVELIST:CVE-2004-2474

nessus1 nvd1 cve1