Published: 29/05/2005 Updated: 05/09/2008

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 760

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Multiple SQL injection vulnerabilities in Net Portal Dynamic System (NPDS) 5.0 allow remote malicious users to execute arbitrary SQL commands via the (1) terme parameter in the glossaire module (glossaire.php) or (2) query parameter to links.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
net portal dynamic system net portal dynamic system 5.0

source: wwwsecurityfocuscom/bid/13803/info NPDS is affected by multiple vulnerabilities resulting from input validation errors These issues may allow remote attackers to carry out HTML injection, cross-site scripting and SQL injection attacks This may result in the theft of authentication credentials, destruction or discl ...

source: wwwsecurityfocuscom/bid/13803/info NPDS is affected by multiple vulnerabilities resulting from input validation errors These issues may allow remote attackers to carry out HTML injection, cross-site scripting and SQL injection attacks This may result in the theft of authentication credentials, destruction or disclos ...

NVD-CWE-Other http://www.npds.org/download.php?op=geninfo&did=115 http://securitytracker.com/id?1014073 https://nvd.nist.gov https://www.exploit-db.com/exploits/25749/

CVE-2005-1804

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect