CVE-2005-4821

Name of the Vulnerable Software and Affected Versions Land Down Under (LDU) versions v801 and earlier

Description The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via parameters including (1) the m parameter in "auth.php", (2) the f parameter in "events.php", or (3) the e parameter in "plug.php".

Recommendations For Land Down Under (LDU) versions v801 and earlier, consider restricting access to the vulnerable parameters m, f, and e in the respective files until a patch is available. As a temporary workaround, avoid using these parameters in the affected API endpoints.