CVE-2005-1287 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2005-1287

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Multiple SQL injection vulnerabilities in BK Forum 4.0 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to member.asp, (2) forum parameter to forum.asp, or (3) various parameters in register.asp.

Affected Software

Name	Vendor	Start Version	End Version
Bk_forum	Bk_dev	*	4 (including)

References

http://marc.info/?l=bugtraq\u0026m=111428133317901\u0026w=2
http://secunia.com/advisories/15072
http://securitytracker.com/id?1013793
http://www.digitalparadox.org/advisories/bkdev.txt
http://www.osvdb.org/15784
http://www.osvdb.org/15785
http://www.osvdb.org/15786
http://www.securityfocus.com/archive/1/431659/100/0/threaded
http://www.securityfocus.com/archive/1/431863/100/0/threaded