CVE-2005-1804

Name of the Vulnerable Software and Affected Versions Net Portal Dynamic System (NPDS) version 5.0

Description The issue concerns SQL injection vulnerabilities that allow remote attackers to execute arbitrary SQL commands. This can be achieved via the terme parameter in the glossaire module, specifically in glossaire.php, or through the query parameter to links.php.

Recommendations For Net Portal Dynamic System (NPDS) version 5.0, consider restricting access to the glossaire module and links.php until a fix is available. As a temporary workaround, avoid using the terme parameter in glossaire.php and the query parameter in links.php to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.