CVE-2005-3816

2005-11-2602:00:00

mitre

www.cve.org

8.5 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

75.5%

JSON

Multiple SQL injection vulnerabilities in forum.php in freeForum 1.1 and earlier and earlier allow remote attackers to execute arbitrary SQL commands via the (1) cat parameter or (2) thread parameter in thread mode.

References

pridels0.blogspot.com/2005/11/freeforum-1x-cat-and-thread-sql-inj.html

secunia.com/advisories/17720

securitytracker.com/id?1015269

www.osvdb.org/21086

www.securityfocus.com/bid/15559

www.vupen.com/english/advisories/2005/2571