Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2005-0946

EPSS 0.49% · P66
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2005-0946

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
SQL injection vulnerability in phpCoin 1.2.1b and earlier allows remote attackers to execute arbitrary SQL commands via the (1) term/keywords field on the search page, (2) username or (3) e-mail field on the forgot password page, or (4) domain name on the ordering new package page.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
phpCoin 多个SQL注入漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
phpCoin是个免费软件包,网络托管的分销商可使用它来管理客户,发票,订单等。 phpCoin 1.2.1b及更早版本中存在多个SQL注入和文件包含漏洞,远程攻击者可能利用漏洞在主机上执行任意命令或非法访问数据库。 1 SQL注入漏洞: phpCoin v1.2.1b及更早版本中存在3个SQL注入漏洞,其中搜索引擎中的漏洞非常实用。在搜索词/关键字中输入选择请求,下订单或找回密码时可能会出现这些漏洞。请注意如果启用了magic_quotes_gpc就不会出现这些漏洞。 2 文件包含漏洞: 在调用page
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2005-0946

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2005-0946

登录查看更多情报信息。

Same Patch Batch · n/a · 2005-04-03 · 25 CVEs total

CVE-2005-0953BZip2 TOCTOUd文件权限漏洞
CVE-2005-0964Kerio Personal Firewall本地网络访问限制绕过漏洞
CVE-2005-0963Toshiba ACPI BIOS 漏洞
CVE-2005-0962Lighthouse Development Squirrelcart SQL注入漏洞
CVE-2005-0961Horde应用系统架构父页标题跨站脚本攻击漏洞
CVE-2005-0960OpenBSD TCP Stack远程拒绝服务漏洞
CVE-2005-0959YepYep mtftpd 缓冲区溢出漏洞
CVE-2005-0958YepYep MTFTPD CWD 格式化字符串漏洞
CVE-2005-0957Bay Technical Associates RPC3 Telnet访问认证绕过漏洞
CVE-2005-0956InterAKT Online MX Shop SQL注入漏洞
CVE-2005-0955InterAKT Online MX Shop SQL注入漏洞
CVE-2005-0954Microsoft Windows XP explorer.exe远程拒绝服务攻击漏洞
CVE-2005-0524PHP Group PHP图形文件格式远程拒绝服务漏洞
CVE-2005-0952PAFileDB ID参数 跨站脚本漏洞
CVE-2005-0950FastStone 4in1 Browser 目录遍历漏洞
CVE-2005-0949ASPApp PortalAPP多个输入验证漏洞
CVE-2005-0948ASPApp PortalAPP多个输入验证漏洞
CVE-2005-0947phpCoin SQL注入及文件包含漏洞
CVE-2005-0945ACS Blog HTML注入漏洞
CVE-2005-0944Microsoft Jet Database Engine件缓冲区溢出漏洞

Showing top 20 of 25 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2005-0946

No comments yet

Leave a comment