CyberSec.Space Logo
返回 CVE 浏览器

CVE-2004-1530

HIGH
7.5
CVSS Severity Score
EPSS Score0.0600%
EPSS Percentile31.76th
Published2004年12月31日
Last Modified2026年4月16日

Vulnerability Description

SQL injection vulnerability in the Event Calendar module 2.13 for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the (1) eid or (2) cid parameters.

Affected Platforms (CPE)

No CPE configurations currently published for this record.

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=110064626111756&w=2
🔗 http://secunia.com/advisories/13213
🔗 http://www.securityfocus.com/bid/11693
🔗 http://www.waraxe.us/index.php?modname=sa&id=38
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/18104
🔗 http://marc.info/?l=bugtraq&m=110064626111756&w=2
🔗 http://secunia.com/advisories/13213
🔗 http://www.securityfocus.com/bid/11693

相关漏洞威胁

CVE-2004-035710.0

Stack-based buffer overflows in SL Mail Pro 2.0.9 allow remote attackers to execute arbitrary code via (1) user.dll, (2) loadpagea...

CVE-2004-062110.0

admin.php in Newsletter ZWS allows remote attackers to gain administrative privileges via a list_user operation with the ulevel pa...

CVE-2004-035610.0

Stack-based buffer overflow in Supervisor Report Center in SL Mail Pro 2.0.9 and earlier allows remote attackers to execute arbitr...

CVE-2004-059710.0

Multiple buffer overflows in libpng 1.2.5 and earlier, as used in multiple products, allow remote attackers to execute arbitrary c...