CVE-2005-4264

2005-12-1511:00:00

mitre

www.cve.org

AI Score

8.8

Confidence

Low

EPSS

0.008

Percentile

81.6%

JSON

Multiple SQL injection vulnerabilities in index.php in PHP Support Tickets 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password fields, and (3) id parameter.

References

secunia.com/advisories/18067

securitytracker.com/id?1015352

www.nii.co.in/vuln/PHPSupportTickets.html

www.osvdb.org/21730

www.securityfocus.com/bid/15853

www.vupen.com/english/advisories/2005/2928