CVE-2005-3305

Name of the Vulnerable Software and Affected Versions Nuked Klan version 1.7

Description The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via several parameters in different files, including the forum id or thread id parameter in the Forum file, the link id in the Links file, the artid parameter in the Sections file, and the dl id parameter in the Download file.

Recommendations For Nuked Klan version 1.7, consider restricting access to the Forum, Links, Sections, and Download files until a patch is available. As a temporary workaround, avoid using the parameters forum id, thread id, link id, artid, and dl id in their respective files to minimize the risk of exploitation.