GNU : Security vulnerabilities, CVEs sql injection published in 2005

CVE-2005-1824

The sql_escape_string function in auth/sql.c for the mailutils SQL authentication module does not properly quote the "\" (backslash) character, which is used as an escape character and makes the module vulnerable to SQL injection attacks.

Max CVSS

7.5

EPSS Score

0.18%

Published

2005-06-02

Updated

2008-09-05

1 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!

Accept Close

GNU : Security Vulnerabilities, CVEs, Published In 2005 (Sql injection) CVSS score >= 1

CVE-2005-1824