Back to search
CVE-2005-1287
Published: Apr 26, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple SQL injection vulnerabilities in BK Forum 4.0 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to member.asp, (2) forum parameter to forum.asp, or (3) various parameters in register.asp.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
15784
vdb-entry
x_refsource_OSVDB
20060423 BK Forum <= 4.0 Remote SQL Injection
mailing-list
x_refsource_BUGTRAQ
15786
vdb-entry
x_refsource_OSVDB
20050423 Multiple Sql injection vulnerabilities in BK Forum v.4
mailing-list
x_refsource_BUGTRAQ
15072
third-party-advisory
x_refsource_SECUNIA
1013793
vdb-entry
x_refsource_SECTRACK
http://www.digitalparadox.org/advisories/bkdev.txt
x_refsource_MISC
15785
vdb-entry
x_refsource_OSVDB
20060421 BK Forum <<--V.4.0 SQL Injection
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now