Vulnerability Details CVE-2005-1481
Multiple SQL injection vulnerabilities in Aaron Outpost ASP Inline Corporate Calendar allow remote attackers to execute arbitrary SQL commands via the Event_ID parameter to (1) defer.asp or (2) details.asp.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.1%
CVSS Severity
CVSS v2 Score 7.5
References
- http://marc.info/?l=bugtraq&m=111530675909673&w=2
- http://secunia.com/advisories/15239
- http://securitytracker.com/id?1013884
- http://www.osvdb.org/16192
- http://www.osvdb.org/16193
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20416
- http://marc.info/?l=bugtraq&m=111530675909673&w=2
- http://secunia.com/advisories/15239
- http://securitytracker.com/id?1013884
- http://www.osvdb.org/16192
- http://www.osvdb.org/16193
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20416
Products affected by CVE-2005-1481
-
cpe:2.3:a:aaronoutpost:asp_inline_corporate_calendar:3