← back
CVE-2005-1234

CVE-2005-1234

EPSS 1.9%
Multiple SQL injection vulnerabilities in phpbb-Auction allow remote attackers to execute arbitrary SQL commands via the (1) u parameter to auction_rating.php or (2) ar parameter to action_offer.php.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/15029http://securitytracker.com/id?1013779https://exchange.xforce.ibmcloud.com/vulnerabilities/20203http://www.aria-security.net/advisory/phpauction.txthttp://www.osvdb.org/15704http://www.osvdb.org/15705http://www.phpbb-auction.com/sutra5600.htmlhttp://www.securityfocus.com/archive/1/441190/100/0/threadedhttp://www.securityfocus.com/bid/13283http://www.securityfocus.com/bid/13284http://www.snkenjoi.com/secadv/secadv9.txt