01642 06 11 11 Arrange Call

SQL Injection Vulnerability in KBase Express 1.0.0 and Earlier: Remote Code Execution

CVE-2005-4010 · HIGH

CVE-2005-4010

SQL injection vulnerability in KBase Express 1.0.0 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) id parameter to category.php and (2) search parameters to search.php.

Learn more about our Web Application Penetration Testing UK.