2 matches found
CVE-2005-4702
SQL injection vulnerability in the favorites module in index.php in IPBProArcade 2.5.2 allows remote attackers to inject arbitrary SQL commands via the gameid parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. In addition,...
CVE-2004-1430
SQL injection vulnerability CVE-2004-1430 affects IbProArcade’s show_stats module (Arcade.php) where the gameid parameter can be exploited to inject arbitrary SQL. This is remote and arises from input handling in the application’s PHP code. The available sources confirm the vulnerability and base...