CVE-2005-4662

critical

Description

Multiple SQL injection vulnerabilities in OcoMon 1.20, and possibly earlier versions, allow remote attackers to execute arbitrary SQL commands via unknown attack vectors in an unspecified input form, a different vulnerability than CVE-2005-4664.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/23085

http://www.securityfocus.com/bid/15386

http://www.osvdb.org/20751

http://sourceforge.net/project/shownotes.php?release_id=369163

http://sourceforge.net/project/showfiles.php?group_id=45554

http://secunia.com/advisories/17470

Details

Source: Mitre, NVD

Published: 2005-12-31

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.00496