CVE-2005-3943

2005-12-01T06:03:00
ID CVE-2005-3943
Type cve
Reporter cve@mitre.org
Modified 2011-03-08T02:27:00

Description

Multiple SQL injection vulnerabilities in ilyav FAQ System 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) FAQ_ID and (2) action parameters in (a) viewFAQ.php; and (3) CATEGORY_ID parameter in (b) index.php.