Vulnerability Details CVE-2005-0935
Multiple SQL injection vulnerabilities in ESMI PayPal Storefront allow remote attackers to execute arbitrary SQL commands via the (1) idpages parameter to pages.php or the (2) id2 parameter to products1.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.015
EPSS Ranking 80.9%
CVSS Severity
CVSS v2 Score 7.5
References
- http://marc.info/?l=bugtraq&m=111221890614271&w=2
- http://secunia.com/advisories/14711
- http://securitytracker.com/id?1013563
- http://www.hackerscenter.com/Archive/view.asp?id=1774
- http://www.osvdb.org/15057
- http://www.osvdb.org/15058
- http://www.securityfocus.com/bid/12903
- http://marc.info/?l=bugtraq&m=111221890614271&w=2
- http://secunia.com/advisories/14711
- http://securitytracker.com/id?1013563
- http://www.hackerscenter.com/Archive/view.asp?id=1774
- http://www.osvdb.org/15057
- http://www.osvdb.org/15058
- http://www.securityfocus.com/bid/12903
Products affected by CVE-2005-0935
-
cpe:2.3:a:esmi:paypal_storefront:1.7