Vulnerability Details CVE-2005-0702
SQL injection vulnerability in phpMyFAQ 1.4 and 1.5 allows remote attackers to add FAQ records to the database via the username field in forum messages.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.7%
CVSS Severity
CVSS v2 Score 5.0
References
Products affected by CVE-2005-0702
-
cpe:2.3:a:phpmyfaq:phpmyfaq:1.4
-
cpe:2.3:a:phpmyfaq:phpmyfaq:1.4_alpha1
-
cpe:2.3:a:phpmyfaq:phpmyfaq:1.4_alpha2
-
cpe:2.3:a:phpmyfaq:phpmyfaq:1.4a
-
cpe:2.3:a:phpmyfaq:phpmyfaq:1.5