Lucene search

[email protected]NVD:CVE-2005-0935

HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-0935

2005-05-0204:00:00

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.5

Confidence

Low

EPSS

0.01

Percentile

83.8%

JSON

Multiple SQL injection vulnerabilities in ESMI PayPal Storefront allow remote attackers to execute arbitrary SQL commands via the (1) idpages parameter to pages.php or the (2) id2 parameter to products1.php.

Affected configurations

Nvd

Node

esmipaypal_storefrontMatch1.7

VendorProductVersionCPE
esmipaypal_storefront1.7cpe:2.3:a:esmi:paypal_storefront:1.7:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
esmi	paypal_storefront	1.7	cpe:2.3:a:esmi:paypal_storefront:1.7:::::::*

References

marc.info/?l=bugtraq&m=111221890614271&w=2

secunia.com/advisories/14711

securitytracker.com/id?1013563

www.hackerscenter.com/Archive/view.asp?id=1774

www.osvdb.org/15057

www.osvdb.org/15058

www.securityfocus.com/bid/12903

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.5

Confidence

Low

EPSS

0.01

Percentile

83.8%

JSON

Related for NVD:CVE-2005-0935

exploitdb2 cvelist1 cve1