VYPR
Unrated severityNVD Advisory· Published Aug 19, 2005· Updated Jun 16, 2026

CVE-2005-2624

CVE-2005-2624

Description

Eval injection vulnerability in CPAINT 1.3-SP allows remote attackers to execute arbitrary ASP code via the cpaint_argument[] parameter to (1) calculator.asp or (2) cpaintfile.asp, which is directly fed into an eval statement.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Cpaint/Cpaint2 versions
    cpe:2.3:a:cpaint:cpaint:1.3_sp:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:cpaint:cpaint:1.3_sp:*:*:*:*:*:*:*
    • (no CPE)range: = 1.3-SP

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.