Multiple SQL Injection Vulnerabilities in BK Forum 4.0

Multiple SQL Injection Vulnerabilities in BK Forum 4.0

CVE-2005-1287 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Multiple SQL injection vulnerabilities in BK Forum 4.0 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to member.asp, (2) forum parameter to forum.asp, or (3) various parameters in register.asp.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.