SQL Injection Vulnerability in SourceWell 1.1.2 and Earlier (index.php)

SQL Injection Vulnerability in SourceWell 1.1.2 and Earlier (index.php)

CVE-2005-3864 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in index.php in SourceWell 1.1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the cnt parameter. NOTE: various reports indicate that the affected version is 1.1.3, but as of 2005-11-29, the most recent version appears to be 1.1.2.

Learn more about our Web Application Penetration Testing UK.