CVE-2005-2221

** DISPUTED ** Multiple SQL injection vulnerabilities in Dragonfly Commerce allows remote attackers to modify SQL statements and possibly execute arbitrary SQL commands via the (1) key parameter to dc_Categoriesview.asp, (2) dc_productslist_Clearance.asp, (3) PID parameter to ratings.asp, (4) dc_Productsview.asp, (5) start, (6) key_mp, (7) searchtype, or (8) psearch parameters to dc_forum_Postslist.asp. NOTE: the vendor has disputed this issue, saying that the error messages arise from invalid category and product numbers. Assuming that this is the case, the issue still satisfies the CVE definition of "exposure."

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://www.digitalparadox.org/viewadvisories.ah?view=46
http://marc.info/?l=bugtraq&m=112121930328341&w=2

Configurations

Configuration 1 (hide)

cpe:2.3:a:incredible_interactive:dragonfly_commerce:*:*:*:*:*:*:*:*

Information

Published : 2005-07-11 21:00

Updated : 2016-10-17 20:25

NVD link : CVE-2005-2221

Mitre link : CVE-2005-2221

JSON object : View

CWE

NVD-CWE-Other

Products Affected

incredible_interactive

dragonfly_commerce

7.5 /10