Customer Area
Need help?
Try CSI
Scan Now
CVE Reference: CVE-2005-2000 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2005-2000 |
|
|
Description: Multiple SQL injection vulnerabilities in paFileDB 3.1 and earlier allow remote attackers to execute arbitrary SQL commands via the formname parameter (1) in the login form, (2) in the team login form, or (3) to auth.php, (4) select, (5) id, or (6) query parameter to pafiledb.php, or (7) string parameter to search.php. |
|
|
CVE Status: Candidate |
|
|
References: MISC http://www.gulftech.org/?node=research&article_id=00082-06142005 CONFIRM http://www.phparena.net/pafiledb_patch/ http://www.phparena.net/ BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=111885787217807&w=2 |
|
| Return to the previous page. |
