CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-0878

SQL injection vulnerability in the login form for LogiSense software including (1) Hawk-i Billing, (2) Hawk-i ASP and (3) DNS Manager allows remote attackers to bypass authentication via SQL code in the password field.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 73.2%

CVSS Severity

CVSS v2 Score 7.5

References

http://archives.neohapsis.com/archives/bugtraq/2002-06/0010.html
http://www.iss.net/security_center/static/9268.php
http://www.securityfocus.com/bid/4931
http://archives.neohapsis.com/archives/bugtraq/2002-06/0010.html
http://www.iss.net/security_center/static/9268.php
http://www.securityfocus.com/bid/4931

Products affected by CVE-2002-0878

Logisense » Dns Manager System » Version: Any

cpe:2.3:a:logisense:dns_manager_system:*
Logisense » Hawk-I » Version: 5.2

cpe:2.3:a:logisense:hawk-i:5.2
Logisense » Hawk-I » Version: asp

cpe:2.3:a:logisense:hawk-i:asp

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-0878

Products

Pricing

Contact Us