CVE Vulnerabilities

CVE-2004-1538

Published: Dec 31, 2004 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

SQL injection vulnerability in include.php in PHPKIT 1.6.03 through 1.6.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Affected Software

Name Vendor Start Version End Version
Phpkit Phpkit 1.6.1 1.6.1
Phpkit Phpkit 1.6.02 1.6.02
Phpkit Phpkit 1.6.03 1.6.03

References