← CVECheck
HomeVulnerabilities

CVE-2003-0025 — HIGH severity vulnerability (Multiple SQL injection vulnerabilities in IMP 2.2.8 and earl)

Multiple SQL injection vulnerabilities in IMP 2.2.8 and earlier allow remote attackers to perform unauthorized database activities and possibly gain privileges via certain database functions such as check_prefs() in db.pgsql, as demonstrated using mailbox.php3.

CVE IDCVE-2003-0025
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2003-01-17
Last modified2026-04-16
DescriptionMultiple SQL injection vulnerabilities in IMP 2.2.8 and earlier allow remote attackers to perform unauthorized database activities and possibly gain privileges via certain database functions such as check_prefs() in db.pgsql, as demonstrated using mailbox.php3.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →