Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3076

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-3076
Last Modified 05 Sep 2008 04:53:24
Published 27 Sep 2005 03:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-3076

Summary

Simplog 0.9.1 might allow remote attackers to execute arbitrary SQL commands or trigger SQL error messages via invalid (1) pid, (2) blogid, (3) cid, or (4) m parameters to archive.php, or the (5) blogid parameter to blogadmin.php.

Vulnerable Systems

Application

  • Simplog 0.9.1


References

CONFIRM - http://www.simplog.org/bugs/bug.php?op=show&bugid=55

BID - 14897

SECUNIA - 16881

SREASON - 755


Last Updated: 27 May 2016 10:40:47