CVE-2005-4608
UnknownEPSS 1.37%
Last modified
CVE-2005-4608 is a vulnerability of currently unknown severity. SQL injection vulnerability in index.php in BugPort 1.147 allows remote attackers to execute arbitrary SQL commands via the (1) devWherePair[0], (2) orderBy, and (3) where parameters.. EPSS estimates a 1.37% chance of exploitation in the next 30 days.
Description
SQL injection vulnerability in index.php in BugPort 1.147 allows remote attackers to execute arbitrary SQL commands via the (1) devWherePair[0], (2) orderBy, and (3) where parameters.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Incogen | Bugport | 1.039 |
| Incogen | Bugport | 1.040 |
| Incogen | Bugport | 1.041 |
| Incogen | Bugport | 1.042 |
| Incogen | Bugport | 1.043 |
| Incogen | Bugport | 1.044 |
| Incogen | Bugport | 1.045 |
| Incogen | Bugport | 1.046 |
| Incogen | Bugport | 1.047 |
| Incogen | Bugport | 1.048 |
| Incogen | Bugport | 1.049 |
| Incogen | Bugport | 1.050 |
| Incogen | Bugport | 1.051 |
| Incogen | Bugport | 1.052 |
| Incogen | Bugport | 1.053 |
| Incogen | Bugport | 1.054 |
| Incogen | Bugport | 1.055 |
| Incogen | Bugport | 1.056 |
| Incogen | Bugport | 1.057 |
| Incogen | Bugport | 1.058 |
| Incogen | Bugport | 1.059 |
| Incogen | Bugport | 1.060 |
| Incogen | Bugport | 1.061 |
| Incogen | Bugport | 1.062 |
| Incogen | Bugport | 1.063 |
| Incogen | Bugport | 1.064 |
| Incogen | Bugport | 1.065 |
| Incogen | Bugport | 1.066 |
| Incogen | Bugport | 1.067 |
| Incogen | Bugport | 1.068 |
| Incogen | Bugport | 1.069 |
| Incogen | Bugport | 1.070 |
| Incogen | Bugport | 1.071 |
| Incogen | Bugport | 1.072 |
| Incogen | Bugport | 1.073 |
| Incogen | Bugport | 1.074 |
| Incogen | Bugport | 1.075 |
| Incogen | Bugport | 1.076 |
| Incogen | Bugport | 1.077 |
| Incogen | Bugport | 1.078 |
| Incogen | Bugport | 1.079 |
| Incogen | Bugport | 1.080 |
| Incogen | Bugport | 1.081 |
| Incogen | Bugport | 1.082 |
| Incogen | Bugport | 1.083 |
| Incogen | Bugport | 1.084 |
| Incogen | Bugport | 1.085 |
| Incogen | Bugport | 1.086 |
| Incogen | Bugport | 1.087 |
| Incogen | Bugport | 1.088 |
Showing 50 of 109 affected configurations. See NVD for the full list.
References
- http://secunia.com/advisories/18282Vendor Advisory
- http://secunia.com/advisories/18282Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2005-4608?
SQL injection vulnerability in index.php in BugPort 1.147 allows remote attackers to execute arbitrary SQL commands via the (1) devWherePair[0], (2) orderBy, and (3) where parameters.
How severe is CVE-2005-4608?
Severity scoring for CVE-2005-4608 is pending analysis. The EPSS model estimates a 1.37% probability of exploitation in the next 30 days.
How do I fix CVE-2005-4608?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2005-4608?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST