CVE-2005-0302

2005-02-1005:00:00

mitre

www.cve.org

AI Score

8.4

Confidence

Low

EPSS

0.002

Percentile

54.9%

JSON

SQL injection vulnerability in default.asp in BackOffice Lite 6.0 and 6.01 allows remote attackers to execute arbitrary SQL commands via the referer field in the HTTP header.

References

marc.info/?l=bugtraq&m=110636597832556&w=2

www.securiteam.com/windowsntfocus/5TP0Q0UEKI.html

exchange.xforce.ibmcloud.com/vulnerabilities/19013