CVE-2005-4240

SQL injection vulnerability in search.php in VCD-db 0.98 and earlier allows remote attackers to execute arbitrary SQL commands via the by parameter.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:vcd-db:vcd-db:0.97:*:*:*:*:*:*:*
cpe:2.3:a:vcd-db:vcd-db:0.98:*:*:*:*:*:*:*
cpe:2.3:a:vcd-db:vcd-db:0.961:*:*:*:*:*:*:*
cpe:2.3:a:vcd-db:vcd-db:0.971:*:*:*:*:*:*:*
cpe:2.3:a:vcd-db:vcd-db:0.972:*:*:*:*:*:*:*
cpe:2.3:a:vcd-db:vcd-db:0.973:*:*:*:*:*:*:*

History

21 Nov 2024, 00:03

Type Values Removed Values Added
References () http://pridels0.blogspot.com/2005/12/vcd-db-vuln.html - () http://pridels0.blogspot.com/2005/12/vcd-db-vuln.html -
References () http://www.osvdb.org/21699 - () http://www.osvdb.org/21699 -
References () http://www.securityfocus.com/bid/15840 - Exploit () http://www.securityfocus.com/bid/15840 - Exploit

Information

Published : 2005-12-14 11:03

Updated : 2024-11-21 00:03


NVD link : CVE-2005-4240

Mitre link : CVE-2005-4240

CVE.ORG link : CVE-2005-4240


JSON object : View

Products Affected

vcd-db

  • vcd-db