Vendor

Enterprise Heart

Products

CVEs

Across products

Status

Private

Products

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2005-4563	Enterprise Heart Enterprise Connector		0.03	—	0.04		Dec 29, 2005	SQL injection vulnerability in main.php in Enterprise Heart Enterprise Connector 1.0.2 allows remote attackers to execute arbitrary SQL commands and bypass login authentication via the loginid parameter, a different vulnerability than CVE-2005-3875.
CVE-2005-3875	Enterprise Heart Enterprise Connector		0.03	—	0.01		Nov 29, 2005	Multiple SQL injection vulnerabilities in Enterprise Connector 1.0.2 and earlier allow remote attackers to execute arbitrary SQL commands via the messageid parameter in (1) send.php or (2) a delete action in messages.php.

CVE-2005-4563Dec 29, 2005
Enterprise Heart
Enterprise Connector
risk 0.03cvss —epss 0.04
SQL injection vulnerability in main.php in Enterprise Heart Enterprise Connector 1.0.2 allows remote attackers to execute arbitrary SQL commands and bypass login authentication via the loginid parameter, a different vulnerability than CVE-2005-3875.
CVE-2005-3875Nov 29, 2005
Enterprise Heart
Enterprise Connector
risk 0.03cvss —epss 0.01
Multiple SQL injection vulnerabilities in Enterprise Connector 1.0.2 and earlier allow remote attackers to execute arbitrary SQL commands via the messageid parameter in (1) send.php or (2) a delete action in messages.php.