Vulnerability Details CVE-2005-0935
Multiple SQL injection vulnerabilities in ESMI PayPal Storefront allow remote attackers to execute arbitrary SQL commands via the (1) idpages parameter to pages.php or the (2) id2 parameter to products1.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.017
EPSS Ranking 81.5%
CVSS Severity
CVSS v2 Score 7.5
References
- http://marc.info/?l=bugtraq&m=111221890614271&w=2
- http://secunia.com/advisories/14711
- http://securitytracker.com/id?1013563
- http://www.hackerscenter.com/Archive/view.asp?id=1774
- http://www.osvdb.org/15057
- http://www.osvdb.org/15058
- http://www.securityfocus.com/bid/12903
- http://marc.info/?l=bugtraq&m=111221890614271&w=2
- http://secunia.com/advisories/14711
- http://securitytracker.com/id?1013563
- http://www.hackerscenter.com/Archive/view.asp?id=1774
- http://www.osvdb.org/15057
- http://www.osvdb.org/15058
- http://www.securityfocus.com/bid/12903
Products affected by CVE-2005-0935
-
cpe:2.3:a:esmi:paypal_storefront:1.7