Vulnerability Details CVE-2005-4664
SQL injection vulnerability in OcoMon 1.21, and possibly other versions, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the logon page, a different vulnerability than CVE-2005-4662.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 57.6%
CVSS Severity
CVSS v2 Score 5.0
References
- http://secunia.com/advisories/17470
- http://sourceforge.net/project/showfiles.php?group_id=45554
- http://www.osvdb.org/20751
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23085
- http://secunia.com/advisories/17470
- http://sourceforge.net/project/showfiles.php?group_id=45554
- http://www.osvdb.org/20751
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23085