Arbitrary SQL Command Execution in Cyphor 0.19 and Earlier

Arbitrary SQL Command Execution in Cyphor 0.19 and Earlier

CVE-2005-3575 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in show.php in Cyphor 0.19 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.

Learn more about our Web Application Penetration Testing UK.