CVE-2005-1234

2005-05-02T04:00:00
ID CVE-2005-1234
Type cve
Reporter cve@mitre.org
Modified 2018-10-19T15:31:00

Description

Multiple SQL injection vulnerabilities in phpbb-Auction allow remote attackers to execute arbitrary SQL commands via the (1) u parameter to auction_rating.php or (2) ar parameter to action_offer.php.