CyberSec.Space Logo
Back to CVE Browser

CVE-2005-1203

HIGH
7.5
CVSS Severity Score
EPSS Score0.1300%
EPSS Percentile37.91th
PublishedMay 2, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

Multiple SQL injection vulnerabilities in index.php in eGroupware before 1.0.0.007 allow remote attackers to execute arbitrary SQL commands via the (1) filter or (2) cats_app parameter.

Affected Platforms (CPE)

πŸ“¦
Egroupware

Egroupware

= 1.0
πŸ“¦
Egroupware

Egroupware

= 1.0.1
πŸ“¦
Egroupware

Egroupware

= 1.0.3
πŸ“¦
Egroupware

Egroupware

= 1.0.6

References & Advisories

πŸ”— http://marc.info/?l=bugtraq&m=111401760125555&w=2
πŸ”— http://secunia.com/advisories/14982
πŸ”— http://security.gentoo.org/glsa/glsa-200504-24.xml
πŸ”— http://sourceforge.net/project/shownotes.php?release_id=320768
πŸ”— http://www.gulftech.org/?node=research&article_id=00069-04202005
πŸ”— http://www.osvdb.org/15753
πŸ”— http://www.securityfocus.com/bid/13212
πŸ”— http://marc.info/?l=bugtraq&m=111401760125555&w=2

Related Vulnerabilities

CVE-2008-204110.0

Multiple unspecified vulnerabilities in eGroupWare before 1.4.004 have unspecified attack vectors and "grave" impact when the web ...

CVE-2007-315410.0

Unspecified vulnerability in Walter Zorn wz_tooltip.js (aka wz_tooltips) before 4.01, as used by eGroupWare before 1.2.107-2 and o...

CVE-2007-315510.0

Unspecified vulnerability in eGroupWare before 1.2.107-2 has unknown impact and attack vectors related to ADOdb. NOTE: due to lac...

CVE-2014-29888.5

EGroupware Enterprise Line (EPL) before 1.1.20140505, EGroupware Community Edition before 1.8.007.20140506, and EGroupware before ...

CVE-2005-1203 Detail & Impact Analysis | CVSS 7.5 (HIGH) | Cyber-Sec.Space | Cyber-Sec.Space