Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0792

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-0792
Last Modified 05 Sep 2008 04:47:19
Published 15 Mar 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-0792

Summary

SQL injection vulnerability in ZPanel 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) uname parameter to index.php or (2) page parameter to zpanel.php.

Vulnerable Systems

Application

  • Zpanel 2.0

  • Zpanel 2.5 Beta

  • Zpanel 2.5 Beta10

  • Zpanel 2.5 Beta9


References

SECUNIA - 14602

XF - zpanel-index-sql-injection(19709)

BID - 12809

BUGTRAQ - 20050320 Re: Few remote bugs in zPanel

BUGTRAQ - 20050315 Few remote bugs in zPanel


Last Updated: 27 May 2016 10:39:56