SQL Injection Vulnerability in PaFileDB 3.1 Allows Remote Code Execution via auth.php

CVE-2005-2723 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in auth.php in PaFileDB 3.1, when authmethod is set to cookies, allows remote attackers to execute arbitrary SQL commands via the username value in the pafiledbcookie cookie.

Learn more about our User Device Pen Test.