CVE-2005-1639

2005-05-1704:00:00

mitre

www.cve.org

sql injection

sigmaweb.dll

remote code execution

AI Score

8.4

Confidence

Low

EPSS

0.003

Percentile

68.0%

JSON

SQL injection vulnerability in Sigmaweb.DLL in Sigma ISP Manager 6.6 allows remote attackers to execute arbitrary SQL commands via the (1) username, (2) password, or (3) domain fields.

References

secunia.com/advisories/15379

www.osvdb.org/16620

www.under9round.com/sigma.txt