Vulnerability Details : CVE-2005-4007
Multiple unspecified vulnerabilities in SAPID CMS before 1.2.3.03, related to newly registered users and possibly authorization checks, have unknown impact and attack vectors involving (1) mvc/controller/user_request_analysis.inc.php and (2) usr/xml/ddc/authorization.xml.
Products affected by CVE-2005-4007
- cpe:2.3:a:redgraphic:sapid_cms:*:*:*:*:*:*:*:*
- cpe:2.3:a:redgraphic:sapid_cms:1.2.3:rc5:*:*:*:*:*:*
- cpe:2.3:a:redgraphic:sapid_cms:1.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:redgraphic:sapid_cms:1.2.3:rc2:*:*:*:*:*:*
- cpe:2.3:a:redgraphic:sapid_cms:1.2.3:rc3:*:*:*:*:*:*
- cpe:2.3:a:redgraphic:sapid_cms:1.2.3:stable:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2005-4007
0.39%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 57 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2005-4007
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
References for CVE-2005-4007
Jump to