VDB
CVE-2003-0735
CVE-2003-0735
PUBLISHED
CVSS 7.5 HIGH
SQL injection vulnerability in the Calendar module of phpWebSite 0.9.x and earlier allows remote attackers to execute arbitrary SQL queries, as demonstrated using the year parameter.
EPSS 4.60% · 89.5th percentile
Risk Scores
CVSS 2.0
7.5
EPSS Score
4.60%
89.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | * |
| phpwebsite | phpwebsite | 0 |
Timeline
- Sep 4, 2003 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Apr 29, 2022 CVE Updated
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- VU#925166 third-party-advisory
- 20030902 GLSA: phpwebsite (200309-03) mailing-list
- 20030810 phpWebSite SQL Injection & DoS & XSS Vulnerabilities mailing-list
- https://nvd.nist.gov/vuln/detail/CVE-2003-0735 advisory