SQL Injection Vulnerability in mod_forum/read_message.php in PortailPHP

CVE-2005-2486 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in mod_forum/read_message.php in PortailPHP allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php with the affiche parameter set to "Forum-read_mess", a different vulnerability than CVE-2005-1701.

Learn more about our Web Application Penetration Testing UK.