PT-2005-4909 · Unknown · Arab Portal System

Publicado

2005-12-14

Atualizado

2018-10-19

CVE-2005-4221

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Arab Portal System version 2 Beta 2

Description The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via the PHPSESSID (session ID) or REQUEST URI (query string).

Recommendations For Arab Portal System version 2 Beta 2, update the link.php file to properly sanitize user input to prevent SQL injection attacks. As a temporary workaround, consider restricting access to the link.php file until a patch is available.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2005-4221

Produtos afetados

Arab Portal System

PT-2005-4909 · Unknown · Arab Portal System

CVE-2005-4221

Identificadores relacionados

Produtos afetados

Referências · 8