Vulnerabilities > CVE-2005-2784 - SQL Injection vulnerability in Cosmoshop 8.10.78

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
cosmoshop
NVD
Published: 2005-09-02
Updated: 2017-07-11

Summary

SQL injection vulnerability in the login function for the administration login panel in cosmoshop 8.10.78 allows remote attackers to execute arbitrary SQL commands and bypass authentication via unspecified vectors.

Vulnerable Configurations

Part Description Count
Application
Cosmoshop
1

References