Multiple SQL Injection Vulnerabilities in socialMPN

Multiple SQL Injection Vulnerabilities in socialMPN

CVE-2005-2031 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Multiple SQL injection vulnerabilities in socialMPN allow remote attackers to execute arbitrary SQL commands via (1) the sid parameter to article.php, (2) uname parameter to user.php, (3) siteid parameter to viewforum.php, (4) username parameter to newtopic.php, the (5) secid or (6) artid parameter to sections.php, (7) siteid parameter to index.php, or (8) sid parameter to friend.php.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.