Vulnerability Details CVE-2005-4615
SQL injection vulnerability in news.php in DapperDesk 3.0.1 and earlier allows remote attackers to execute arbitrary SQL commands via the page parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.1%
CVSS Severity
CVSS v2 Score 7.5
References
- http://pridels0.blogspot.com/2005/11/dapperdesk-30x-page-sql-inj.html
- http://www.osvdb.org/21315
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24354
- http://pridels0.blogspot.com/2005/11/dapperdesk-30x-page-sql-inj.html
- http://www.osvdb.org/21315
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24354
Products affected by CVE-2005-4615
-
cpe:2.3:a:dapperdesk:dapperdesk:*