Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0735

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2003-0735
Last Modified 05 Sep 2008 04:35:07
Published 20 Oct 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0735

Summary

SQL injection vulnerability in the Calendar module of phpWebSite 0.9.x and earlier allows remote attackers to execute arbitrary SQL queries, as demonstrated using the year parameter.

Vulnerable Systems

Application

  • Phpwebsite 0.9.0


References

CERT-VN - VU#925166

BUGTRAQ - 20030902 GLSA: phpwebsite (200309-03)

BUGTRAQ - 20030810 phpWebSite SQL Injection & DoS & XSS Vulnerabilities


Last Updated: 27 May 2016 10:38:02