CVE-2005-3423

2005-11-0122:00:00

mitre

www.cve.org

8.5 High

AI Score

Confidence

Low

0.014 Low

EPSS

Percentile

86.4%

JSON

Multiple SQL injection vulnerabilities in Subdreamer 2.2.1 allow remote attackers to execute arbitrary SQL commands via (1) the loginusername parameter or (2) cookies to (a) subdreamer.php, (b) ipb2.php, © phpbb2.php, (d) vbulletin2.php, and (e) vbulletin3.php.

References

rst.void.ru/papers/advisory35.txt

secunia.com/advisories/17378

www.osvdb.org/20378

www.osvdb.org/20379

www.osvdb.org/20380

www.osvdb.org/20381

www.osvdb.org/20382

www.osvdb.org/20384

www.securityfocus.com/bid/15238