Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4227

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-4227
Last Modified 07 Mar 2011 09:27:52
Published 14 Dec 2005 06:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-4227

Summary

Multiple "potential" SQL injection vulnerabilities in DCP-Portal 6.1.1 might allow remote attackers to execute arbitrary SQL commands via (1) the password and username parameters in advertiser.php, (2) the aid parameter in announcement.php, (3) the dcp5_member_id, year, agid, day, day_s, hour, minute, month, month_s, and year_s parameters in calendar.php, (4) the cid parameter in contents.php, (5) the dcp5_member_id parameter in forums.php, (6) the bid parameter in go.php, (7) the lid parameter in golink.php, (8) the dcp5_member_id and mid parameters in inbox.php, (9) the catid, dcat, and dl parameters in index.php, (10) the dcp5_member_id in informer.php, (11) the nid parameter in news.php, (12) the type and rate parameters in rate.php, (13) the q parameter in search.php, and (14) the dcp5_member_id in update.php. NOTE: other vectors in the PHP-CHECKER report are also covered by CVE-2005-3365 and CVE-2005-0454.

Vulnerable Systems

Application

  • Codeworx Technologies Dcp-portal 3.7

  • Codeworx Technologies Dcp-portal 4.0

  • Codeworx Technologies Dcp-portal 4.1

  • Codeworx Technologies Dcp-portal 4.2

  • Codeworx Technologies Dcp-portal 4.5.1

  • Codeworx Technologies Dcp-portal 5.0.1

  • Codeworx Technologies Dcp-portal 5.0.2

  • Codeworx Technologies Dcp-portal 5.1

  • Codeworx Technologies Dcp-portal 5.2

  • Codeworx Technologies Dcp-portal 5.3

  • Codeworx Technologies Dcp-portal 5.3.1

  • Codeworx Technologies Dcp-portal 5.3.2

  • Codeworx Technologies Dcp-portal 6.0

  • Codeworx Technologies Dcp-portal 6.1

  • Codeworx Technologies Dcp-portal 6.1.1


References

XF - dcpportal-multiple-php-sql-injection(22855)

VUPEN - ADV-2005-2863

BID - 15183

BUGTRAQ - 20051212 [PHP-CHECKER] 99 potential SQL injection vulnerabilities

BUGTRAQ - 20051211 [PHP-CHECKER] 99 potential SQL injection vulnerabilities

OSVDB - 22031

OSVDB - 22030

OSVDB - 22029

OSVDB - 22028

OSVDB - 22027

OSVDB - 22026

OSVDB - 22025

OSVDB - 22024

OSVDB - 22023

OSVDB - 22022

OSVDB - 22021

OSVDB - 22020

OSVDB - 22019

OSVDB - 22018

OSVDB - 22017

SECUNIA - 12751

MISC - http://glide.stanford.edu/yichen/research/sec.pdf


Last Updated: 27 May 2016 10:41:12