CVE-2005-2031

2005-06-16T04:00:00
ID CVE-2005-2031
Type cve
Reporter cve@mitre.org
Modified 2008-09-05T20:50:00

Description

Multiple SQL injection vulnerabilities in socialMPN allow remote attackers to execute arbitrary SQL commands via (1) the sid parameter to article.php, (2) uname parameter to user.php, (3) siteid parameter to viewforum.php, (4) username parameter to newtopic.php, the (5) secid or (6) artid parameter to sections.php, (7) siteid parameter to index.php, or (8) sid parameter to friend.php.