CVE-2005-3880
Omnistar KBase 4.0 and earlier contain SQL injection vulnerabilities in the web front end. Specifically, the parameters (1) article_id in users/comments.php, and (2) category_id and (3) id in users/kb.php allow remote attackers to modify the underlying SQL commands. This relates to the CVE-2005-3...