Unknown · Mediabox404 · CVE-2005-2632
**Name of the Vulnerable Software and Affected Versions**
mediabox404 versions 1.2 and earlier
**Description**
A SQL injection issue allows remote attackers to execute arbitrary SQL commands via the `User` field in the login admin mediabox404.php file.
**Recommendations**
For mediabox404 versions 1.2 and earlier, consider restricting access to the login admin mediabox404.php file until a fix is available. As a temporary workaround, avoid using the `User` field in the affected file to minimize the risk of exploitation.