CVE-2005-4221

2005-12-1411:00:00

mitre

www.cve.org

AI Score

8.4

Confidence

Low

EPSS

0.111

Percentile

95.2%

JSON

SQL injection vulnerability in link.php in Arab Portal System 2 Beta 2 allows remote attackers to execute arbitrary SQL commands via the (1) PHPSESSID (session ID) or (2) REQUEST_URI (query string).

References

secunia.com/advisories/17984

www.osvdb.org/21672

www.securityfocus.com/archive/1/419264/100/0/threaded

www.securityfocus.com/bid/15820

www.vupen.com/english/advisories/2005/2858