Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4081

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-4081
Last Modified 05 Sep 2008 04:56:04
Published 07 Dec 2005 08:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-4081

Summary

Multiple SQL injection vulnerabilities in Alisveristr E-commerce allow remote attackers to bypass authentication and possibly execute arbitrary SQL commands via the username and password parameters in (1) the user login and (2) administrator login pages.

Vulnerable Systems

Application

  • Alisveristr E-commerce


References

XF - alisveristr-login-sql-injection(23507)

BID - 15699

BUGTRAQ - 20051203 Alisveristr E-Commerce Admin Login SQL İnjection

OSVDB - 21622

SREASON - 228


Last Updated: 27 May 2016 10:41:11