Vulnerability Database

290,476

Total vulnerabilities in the database

CVE-2004-2067

SQL injection vulnerability in controlpanel.php in Jaws Framework and Content Management System 0.4 allows remote attackers to execute arbitrary SQL and bypass authentication via the (1) user, (2) password, or (3) crypted_password parameters.

  • Published: Jul 29, 2004
  • Updated: Apr 13, 2023
  • CVE: CVE-2004-2067
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
jaws / jaws 0.3 0.3.x
jaws / jaws 0.2 0.2.x
jaws / jaws 0.4 0.4.x