CVE Vulnerabilities

CVE-2005-3844

Published: Nov 26, 2005 | Modified: Mar 08, 2011
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

SQL injection vulnerability in phpWordPress PHP News and Article Manager 3.0 allows remote attackers to execute arbitrary SQL commands via the (1) poll and (2) category parameters to index.php, and (3) the ctg parameter in an archive action.

Affected Software

Name Vendor Start Version End Version
Php_news_and_article_manager Phpwordpress 3.0 (including) 3.0 (including)

References