CVE-2005-4719

Name of the Vulnerable Software and Affected Versions Sysbotz Systems Panel versions 1.0.6 and earlier

Description The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via several parameters in different PHP files, including cid in "knowledgebase/index.php", aid in "knowledgebase/view.php", cid in "contact/update.php", letter in "links/index.php", mid in "messageboard/view.php", and tid in "tickets/view.php".

Recommendations For Sysbotz Systems Panel versions 1.0.6 and earlier, update to a version later than 1.0.6 to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable parameters cid, aid, letter, mid, and tid in their respective PHP files until a patch is available.