← Back to CVEs

CVE-2003-0025

N/A

Description

Multiple SQL injection vulnerabilities in IMP 2.2.8 and earlier allow remote attackers to perform unauthorized database activities and possibly gain privileges via certain database functions such as check_prefs() in db.pgsql, as demonstrated using mailbox.php3.

CVE Details

CVSS v3.1 ScoreN/A

Published1/17/2003

Last Modified4/16/2026

Sourcenvd

Honeypot Sightings0

Affected Products

horde:imp

References

http://marc.info/?l=bugtraq&m=104204786206563&w=2(cve@mitre.org)

http://secunia.com/advisories/8087(cve@mitre.org)

http://secunia.com/advisories/8177(cve@mitre.org)

http://www.debian.org/security/2003/dsa-229(cve@mitre.org)

http://www.securityfocus.com/archive/1/306268(cve@mitre.org)

http://www.securityfocus.com/bid/6559(cve@mitre.org)

http://www.securitytracker.com/id?1005904(cve@mitre.org)

http://marc.info/?l=bugtraq&m=104204786206563&w=2(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/8087(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/8177(af854a3a-2127-422b-91ae-364da2661108)

http://www.debian.org/security/2003/dsa-229(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/archive/1/306268(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/6559(af854a3a-2127-422b-91ae-364da2661108)

http://www.securitytracker.com/id?1005904(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.