CVE-2005-3864

2005-11-29T11:03:00
ID CVE-2005-3864
Type cve
Reporter cve@mitre.org
Modified 2011-03-08T02:27:00

Description

SQL injection vulnerability in index.php in SourceWell 1.1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the cnt parameter. NOTE: various reports indicate that the affected version is 1.1.3, but as of 2005-11-29, the most recent version appears to be 1.1.2.