CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2004-1972

SQL injection vulnerability in modules.php in PHP-Nuke Video Gallery Module 0.1 Beta 5 allows remote attackers to execute arbitrary SQL code via the (1) clipid or (2) catid parameters in a viewclip, viewcat, or voteclip action.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 3.7%

CVSS Severity

CVSS v2 Score 7.5

References

http://marc.info/?l=bugtraq&m=108308660628557&w=2
http://www.securityfocus.com/bid/10215
https://exchange.xforce.ibmcloud.com/vulnerabilities/15979
http://marc.info/?l=bugtraq&m=108308660628557&w=2
http://www.securityfocus.com/bid/10215
https://exchange.xforce.ibmcloud.com/vulnerabilities/15979

Products affected by CVE-2004-1972

Francisco Burzi » Php-Nuke » Version: 7.2

cpe:2.3:a:francisco_burzi:php-nuke:7.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-1972

Products

Pricing

Contact Us