CVE-2005-0792

  • Last update: Apr 13, 2023

Description

SQL injection vulnerability in ZPanel 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) uname parameter to index.php or (2) page parameter to zpanel.php.

Software From Fixed in
zpanel / zpanel 2.5_beta9 2.5_beta9.x
zpanel / zpanel 2.5_beta10 2.5_beta10.x
zpanel / zpanel 2.0 2.0.x
zpanel / zpanel 2.5_beta 2.5_beta.x

Details

    • Severity: High
  • CVE: CVE-2005-0792
  • Published: Mar 15, 2005
  • Updated: Apr 13, 2023
  • Exploit:

CVSS v2

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P