2 matches found
CVE-2005-3363
SQL injection vulnerability in Saphp Lesson, possibly saphp Lesson1.1 and saphpLesson2.0, allows remote attackers to execute arbitrary SQL commands via the forumid parameter in 1 showcat.php and 2 add.php...
CVE-2005-3363
The CVE-2005-3363 issue is an SQL injection in Saphp Lesson (likely versions Lesson1.1 and Lesson2.0) that lets remote attackers inject arbitrary SQL via the forumid parameter in showcat.php and add.php. The description implies network access with low attack complexity and no authentication, with...