CVE-2005-4515

Name of the Vulnerable Software and Affected Versions WebDB versions 1.1 and earlier

Description A SQL injection issue allows remote attackers to execute arbitrary SQL commands via unspecified search parameters, possibly Search0. The vendor has disputed this issue, stating that the flaw was in custom code added for a client and has since been removed, with no installations or patches required for clients.

Recommendations For WebDB versions 1.1 and earlier, no action is required on the part of customers, as the vendor has removed the flawed code and all users of the software begin to use the latest changes immediately.