|
|
CVE Reference: CVE-2005-3817 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2005-3817 |
|
|
Description: Multiple SQL injection vulnerabilities in Softbiz Web Host Directory Script 1.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) cid parameter in search_result.php, (2) sbres_id parameter in review.php, (3) cid parameter in browsecats.php, (4) h_id parameter in email.php, and (5) an unspecified parameter to the search module. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/23208 SAID Secunia Advisory: SA17724 OSVDB 21079 21083 21082 21081 21080 MISC http://pridels.blogspot.com/2005/11/web-host-directory-script-multiple.html BID 15561 |
|
| Return to the previous page. |
