Vulnerabilities

CVE-2005-4586

by Fred · 30/12/2005

Multiple SQL injection vulnerabilities in PHPSurveyor before 0.991 allow remote attackers to execute arbitrary SQL commands via the (1) sql parameter in browse.php and the (2) sid, (3) lid, (4) gid, and (5) token parameters in certain PHP scripts.

Date published : 2005-12-30

http://www.securityfocus.com/bid/16077

http://sourceforge.net/project/shownotes.php?release_id=381050&group_id=74605

Related

Tags: Cybersecurity Alert