Vulnerability Details CVE-2004-0017
Multiple SQL injection vulnerabilities in the (1) calendar and (2) infolog modules for phpgroupware 0.9.14 allow remote attackers to perform unauthorized database operations.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 65.0%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/10591
- http://www.debian.org/security/2004/dsa-419
- http://www.securityfocus.com/bid/9386
- http://www.securitytracker.com/id?1008662
- http://secunia.com/advisories/10591
- http://www.debian.org/security/2004/dsa-419
- http://www.securityfocus.com/bid/9386
- http://www.securitytracker.com/id?1008662
Products affected by CVE-2004-0017
-
cpe:2.3:a:phpgroupware:phpgroupware:0.9.14