SQL Injection Vulnerabilities in phpAdsNew and phpPgAds 2.0.6

SQL Injection Vulnerabilities in phpAdsNew and phpPgAds 2.0.6

CVE-2005-3646 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Multiple SQL injection vulnerabilities in lib-sessions.inc.php in phpAdsNew and phpPgAds 2.0.6 and possibly earlier versions allow remote attackers to execute arbitrary SQL commands via the sessionID parameter in (1) logout.php and (2) index.php.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.