CVE-2005-0475

Name of the Vulnerable Software and Affected Versions paFAQ versions Beta4 and possibly other versions

Description The issue allows remote attackers to execute arbitrary SQL code. This can be achieved via several parameters to different PHP files, including offset, limit, order, or orderby to "question.php", offset to "answer.php", search item to "search.php", and cat id, cid, or id to "comment.php".

Recommendations For paFAQ version Beta4, consider restricting access to the vulnerable parameters offset, limit, order, orderby, search item, cat id, cid, and id in the respective PHP files until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.