Vulnerabilities > CVE-2005-4303 - Input Validation vulnerability in EZDatabase

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
indexcor
exploit available
NVD
Published: 2005-12-17
Updated: 2008-09-20

Summary

SQL injection vulnerability in index.php for ezDatabase 2.1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the db_id parameter.

Vulnerable Configurations

Part Description Count
Application
Indexcor
1

Exploit-Db

descriptionezDatabase 2.1.2 index.php db_id Parameter SQL Injection. CVE-2005-4303. Webapps exploit for php platform
idEDB-ID:26854
last seen2016-02-03
modified2005-12-16
published2005-12-16
reporterr0t3d3Vil
sourcehttps://www.exploit-db.com/download/26854/
titleezDatabase 2.1.2 index.php db_id Parameter SQL Injection

References