← back
CVE-2005-1364

CVE-2005-1364

EPSS 1.5%
Multiple SQL injection vulnerabilities in MetaBid Auctions allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password fields in logIn.asp, or (3) intAuctionID parameter to item.asp.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://digitalparadox.org/advisories/metabid.txthttp://marc.info/?l=bugtraq&m=111454192928364&w=2http://secunia.com/advisories/15136https://exchange.xforce.ibmcloud.com/vulnerabilities/20286http://www.osvdb.org/15868http://www.osvdb.org/15869http://www.securityfocus.com/bid/13395