SQL Injection Vulnerability in ibProArcade 2.5.2 and Earlier: Remote Code Execution via User Parameter

SQL Injection Vulnerability in ibProArcade 2.5.2 and Earlier: Remote Code Execution via User Parameter

CVE-2005-3545 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in index.php of the report module in ibProArcade 2.5.2 and earlier allows remote attackers to execute arbitrary SQL commands via the user parameter.

Learn more about our User Device Pen Test.