CVE-2005-4792 | Vulnerability Database | Aqua Security

SQL injection vulnerability in index.php in Appalachian State University phpWebSite 0.10.1 and earlier allows remote attackers to execute arbitrary SQL commands via the module parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected Software

Name	Vendor	Start Version	End Version
Phpwebsite	Phpwebsite	*	0.10.1 (including)
Phpwebsite	Phpwebsite	0.7.3 (including)	0.7.3 (including)
Phpwebsite	Phpwebsite	0.8.2 (including)	0.8.2 (including)
Phpwebsite	Phpwebsite	0.8.3 (including)	0.8.3 (including)
Phpwebsite	Phpwebsite	0.9.0 (including)	0.9.0 (including)
Phpwebsite	Phpwebsite	0.9.1 (including)	0.9.1 (including)
Phpwebsite	Phpwebsite	0.9.2 (including)	0.9.2 (including)
Phpwebsite	Phpwebsite	0.9.3 (including)	0.9.3 (including)
Phpwebsite	Phpwebsite	0.9.3.1 (including)	0.9.3.1 (including)
Phpwebsite	Phpwebsite	0.9.3.2 (including)	0.9.3.2 (including)
Phpwebsite	Phpwebsite	0.9.3.3 (including)	0.9.3.3 (including)
Phpwebsite	Phpwebsite	0.9.3.4 (including)	0.9.3.4 (including)
Phpwebsite	Phpwebsite	0.10 (including)	0.10 (including)

References

http://www.securityfocus.com/bid/15088

NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-4792
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html