Vulnerability Details CVE-2005-2784
SQL injection vulnerability in the login function for the administration login panel in cosmoshop 8.10.78 allows remote attackers to execute arbitrary SQL commands and bypass authentication via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.7%
CVSS Severity
CVSS v2 Score 7.5
References
- http://marc.info/?l=bugtraq&m=112534390600093&w=2
- http://secunia.com/advisories/16625/
- http://www.securityfocus.com/bid/14689
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22079
- http://marc.info/?l=bugtraq&m=112534390600093&w=2
- http://secunia.com/advisories/16625/
- http://www.securityfocus.com/bid/14689
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22079