CVE-2005-3553
CVE-2005-3553 describes multiple SQL injection vulnerabilities in include.php of PHPKIT 1.6.1 R2 and earlier. The issues allow remote attackers to execute arbitrary SQL commands via (1) the id parameter when used with login/userinfo.php, and (2) the session parameter (the PHPKITSID variable). The...