{
  "id": "CVE-2005-3160",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2005-10-06T10:02:00.000",
  "lastModified": "2008-09-05T20:53:37.187",
  "vulnStatus": "Analyzed",
  "descriptions": [
    {
      "lang": "en",
      "value": "Multiple SQL injection vulnerabilities in photogallery.php in PHP-Fusion allow remote attackers to execute arbitrary SQL commands via the (1) album and (2) photo parameters."
    }
  ],
  "metrics": {
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "accessVector": "NETWORK",
          "accessComplexity": "LOW",
          "authentication": "NONE",
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5
        },
        "baseSeverity": "HIGH",
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": true,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:php_fusion:php_fusion:6.00.100:*:*:*:*:*:*:*",
              "matchCriteriaId": "61EB6101-6BD0-4D6A-B681-7607B9424977"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:php_fusion:php_fusion:6.00.101:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D2AB1FF-B81B-4F19-9192-1E1CB66516D2"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:php_fusion:php_fusion:6.00.102:*:*:*:*:*:*:*",
              "matchCriteriaId": "C5D4A233-7466-4F44-8468-779AA6A60850"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:php_fusion:php_fusion:6.00.103:*:*:*:*:*:*:*",
              "matchCriteriaId": "29821D4F-1EF2-4DA0-8CAB-67700D0B1A13"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:php_fusion:php_fusion:6.00.104:*:*:*:*:*:*:*",
              "matchCriteriaId": "DD1DCE7B-E049-4FA0-A972-D39BCE79E1C3"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:php_fusion:php_fusion:6.00.105:*:*:*:*:*:*:*",
              "matchCriteriaId": "D4D79B94-BBA2-47D2-9D2C-5EF59FE6D7B7"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:php_fusion:php_fusion:6.00.106:*:*:*:*:*:*:*",
              "matchCriteriaId": "E92E863F-C72B-428E-A134-2CA5CA7058B5"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:php_fusion:php_fusion:6.00.107:*:*:*:*:*:*:*",
              "matchCriteriaId": "BFC61337-9477-46AC-AA5E-7722F594BCAE"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:php_fusion:php_fusion:6.00.108:*:*:*:*:*:*:*",
              "matchCriteriaId": "6716EE68-D01C-4C5B-ACA5-30E58B834C4A"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:php_fusion:php_fusion:6.00.109:*:*:*:*:*:*:*",
              "matchCriteriaId": "C1318098-F9B4-4BE8-AB18-3EB82DE4E740"
            }
          ]
        }
      ]
    }
  ],
  "references": []
}