CVE-2005-3072

Published Sep 27, 2005

Last updated 7 years ago

Overview

Description: SQL injection vulnerability in pages/forum/submit.html in Interchange 4.9.3 up to 5.2.0 allows remote attackers to execute arbitrary SQL commands via unknown vectors.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:interchange_development_group:interchange:4.9.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D66EB2C6-C7A9-4A4B-8D86-252E2C72E7A4"
          },
          {
            "criteria": "cpe:2.3:a:interchange_development_group:interchange:4.9.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4C602361-6AC9-440F-A8A6-E51D6C8BCB03"
          },
          {
            "criteria": "cpe:2.3:a:interchange_development_group:interchange:4.9.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "66BB5C11-E04E-4C46-928D-12E7CBB1CBE2"
          },
          {
            "criteria": "cpe:2.3:a:interchange_development_group:interchange:4.9.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4499946-FEA7-422D-BCF7-E44F2F110304"
          },
          {
            "criteria": "cpe:2.3:a:interchange_development_group:interchange:4.9.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D6355504-3928-4F42-BE82-E8D336D88114"
          },
          {
            "criteria": "cpe:2.3:a:interchange_development_group:interchange:4.9.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "002E154B-7FB4-4732-8290-89DC9624177D"
          },
          {
            "criteria": "cpe:2.3:a:interchange_development_group:interchange:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "89CD71AD-539A-4529-B617-14E667D98F4C"
          },
          {
            "criteria": "cpe:2.3:a:interchange_development_group:interchange:5.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BE3EF221-D1FD-4906-8167-AC2BE6C275AA"
          },
          {
            "criteria": "cpe:2.3:a:interchange_development_group:interchange:5.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "51BB18BE-B4F8-4C57-BBCE-4016BDEE5E36"
          },
          {
            "criteria": "cpe:2.3:a:interchange_development_group:interchange:5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B0E58845-8F7B-4F31-8305-E6542902E1A6"
          },
          {
            "criteria": "cpe:2.3:a:interchange_development_group:interchange:5.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7A49479E-B8B1-4EE3-9615-65A59DE59DDF"
          },
          {
            "criteria": "cpe:2.3:a:interchange_development_group:interchange:5.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "26EF260D-C8AC-445F-918F-D094863C2FE1"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References