Vulnerability Details CVE-2004-0304
SQL injection vulnerability in browse_items.asp in WebCortex WebStores 2000 6.0 allows remote attackers to gain unauthorized access and execute arbitrary commands via the Search_Text parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.015
EPSS Ranking 80.1%
CVSS Severity
CVSS v2 Score 10.0
References
- http://marc.info/?l=bugtraq&m=107712159425226&w=2
- http://www.s-quadra.com/advisories/Adv-20040218.txt
- http://www.securityfocus.com/bid/7766
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15253
- http://marc.info/?l=bugtraq&m=107712159425226&w=2
- http://www.s-quadra.com/advisories/Adv-20040218.txt
- http://www.securityfocus.com/bid/7766
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15253
Products affected by CVE-2004-0304
-
cpe:2.3:a:webcortex:webstores_2000:6.0