Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4631

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-4631
Last Modified 20 Sep 2008 12:43:36
Published 31 Dec 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-4631

Summary

SQL injection vulnerability in index.php in Zina 0.12.07 and earlier allows remote attackers to execute arbitrary SQL commands via the p parameter.

Vulnerable Systems

Application

  • Ryan Lath Zina 0.09.0

  • Ryan Lath Zina 0.09.1

  • Ryan Lath Zina 0.09.10

  • Ryan Lath Zina 0.09.11

  • Ryan Lath Zina 0.09.12

  • Ryan Lath Zina 0.09.13

  • Ryan Lath Zina 0.09.14

  • Ryan Lath Zina 0.09.15

  • Ryan Lath Zina 0.09.16

  • Ryan Lath Zina 0.09.17

  • Ryan Lath Zina 0.09.18

  • Ryan Lath Zina 0.09.19

  • Ryan Lath Zina 0.09.2

  • Ryan Lath Zina 0.09.20

  • Ryan Lath Zina 0.09.21

  • Ryan Lath Zina 0.09.22

  • Ryan Lath Zina 0.09.23

  • Ryan Lath Zina 0.09.24

  • Ryan Lath Zina 0.09.25

  • Ryan Lath Zina 0.09.26

  • Ryan Lath Zina 0.09.5

  • Ryan Lath Zina 0.09.6

  • Ryan Lath Zina 0.09.7

  • Ryan Lath Zina 0.09.8

  • Ryan Lath Zina 0.09.9

  • Ryan Lath Zina 0.10.01

  • Ryan Lath Zina 0.10.02

  • Ryan Lath Zina 0.10.03

  • Ryan Lath Zina 0.10.04

  • Ryan Lath Zina 0.10.05

  • Ryan Lath Zina 0.10.06

  • Ryan Lath Zina 0.10.07

  • Ryan Lath Zina 0.10.08

  • Ryan Lath Zina 0.10.09

  • Ryan Lath Zina 0.10.10

  • Ryan Lath Zina 0.10.11

  • Ryan Lath Zina 0.10.12

  • Ryan Lath Zina 0.10.13

  • Ryan Lath Zina 0.10.14

  • Ryan Lath Zina 0.10.15

  • Ryan Lath Zina 0.10.16

  • Ryan Lath Zina 0.10.17

  • Ryan Lath Zina 0.10.18

  • Ryan Lath Zina 0.10.19

  • Ryan Lath Zina 0.10.20

  • Ryan Lath Zina 0.10.21

  • Ryan Lath Zina 0.10.22

  • Ryan Lath Zina 0.10.23

  • Ryan Lath Zina 0.10.24

  • Ryan Lath Zina 0.10.25

  • Ryan Lath Zina 0.10.26

  • Ryan Lath Zina 0.10.27

  • Ryan Lath Zina 0.11.01

  • Ryan Lath Zina 0.11.02

  • Ryan Lath Zina 0.11.03

  • Ryan Lath Zina 0.11.04

  • Ryan Lath Zina 0.11.05

  • Ryan Lath Zina 0.11.06

  • Ryan Lath Zina 0.11.07

  • Ryan Lath Zina 0.11.08

  • Ryan Lath Zina 0.11.09

  • Ryan Lath Zina 0.11.10

  • Ryan Lath Zina 0.11.11

  • Ryan Lath Zina 0.11.12

  • Ryan Lath Zina 0.11.13

  • Ryan Lath Zina 0.11.14

  • Ryan Lath Zina 0.11.15

  • Ryan Lath Zina 0.11.16

  • Ryan Lath Zina 0.11.17

  • Ryan Lath Zina 0.11.18

  • Ryan Lath Zina 0.11.19

  • Ryan Lath Zina 0.11.20

  • Ryan Lath Zina 0.11.21

  • Ryan Lath Zina 0.11.22

  • Ryan Lath Zina 0.12.01

  • Ryan Lath Zina 0.12.02

  • Ryan Lath Zina 0.12.03

  • Ryan Lath Zina 0.12.04

  • Ryan Lath Zina 0.12.05

  • Ryan Lath Zina 0.12.06

  • Ryan Lath Zina 0.12.07


References

OSVDB - 21306

MISC - http://pridels0.blogspot.com/2005/11/zina-sql-injection-vulnerability.html


Last Updated: 27 May 2016 10:41:22