CVE-2005-2048
Summary (CVE-2005-2048): DUforum 3.1 (DUware) is affected by multiple SQL injection vulnerabilities due to improper input sanitization. The exploitable parameters are (1) iMsg in messages.asp, (2) iFor in post.asp, (3) iFor in forums.asp, and (4) id in userEdit.asp. This allows remote attackers t...