CVE-2005-4040

SQL injection vulnerability in FileLister 0.51 and earlier allows remote attackers to execute arbitrary SQL commands via the search parameters, possibly the searchwhat parameter to definesearch.jsp.

Date published : 2005-12-06

http://www.securityfocus.com/bid/15706

http://pridels0.blogspot.com/2005/12/filelister-sql-inj-vuln.html