CVE Reference: CVE-2005-3868

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2005-3868

Description:
Multiple SQL injection vulnerabilities in K-Search 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) term, (2) id, (3) stat, and (4) source parameters to index.php, and (5) through the image parameters with an add request.

CVE Status:
Candidate

References:

SAID
  Secunia Advisory: SA17719

OSVDB
  21127

MISC
  http://pridels0.blogspot.com/2005/11/k-search-multiple-vuln.html

EXPLOIT-DB
  http://www.exploit-db.com/exploits/13993

BID
  15588


Return to the previous page.