CVE-2005-3829

Name of the Vulnerable Software and Affected Versions ActiveCampaign KnowledgeBuilder versions 2.4 and earlier

Description The issue allows remote attackers to cause a denial of service, specifically CPU consumption, by providing an invalid category parameter. This invalid parameter causes the system to process a large number of SQL queries.

Recommendations For ActiveCampaign KnowledgeBuilder versions 2.4 and earlier, consider restricting access to the index.php file until a patch is available. As a temporary workaround, avoid using invalid category parameters in requests to prevent excessive SQL queries. At the moment, there is no information about a newer version that contains a fix for this vulnerability.