CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2003-0735

SQL injection vulnerability in the Calendar module of phpWebSite 0.9.x and earlier allows remote attackers to execute arbitrary SQL queries, as demonstrated using the year parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.046

EPSS Ranking 88.9%

CVSS Severity

CVSS v2 Score 7.5

References

http://marc.info/?l=bugtraq&m=106062021711496&w=2
http://marc.info/?l=bugtraq&m=106252188522715&w=2
http://www.kb.cert.org/vuls/id/925166
http://marc.info/?l=bugtraq&m=106062021711496&w=2
http://marc.info/?l=bugtraq&m=106252188522715&w=2
http://www.kb.cert.org/vuls/id/925166

Products affected by CVE-2003-0735

Phpwebsite » Phpwebsite » Version: Any

cpe:2.3:a:phpwebsite:phpwebsite:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2003-0735

Products

Pricing

Contact Us