CVE-2005-1875

Published: Jun 7, 2005

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple SQL injection vulnerabilities in list.php in Exhibit Engine (EE) 1.22 allow remote attackers to execute arbitrary SQL commands via the (1) search_row, (2) sort_row, (3) order or (4) perpage parameter.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

13844

vdb-entry

x_refsource_BID

15583

third-party-advisory

x_refsource_SECUNIA

http://photography-on-the.net/forum/showthread.php?p=579692

x_refsource_CONFIRM

17006

vdb-entry

x_refsource_OSVDB

20050602 SEC-CONSULT SA20050602-2 :: Exhibit Engine Blind SQL Injection

mailing-list

x_refsource_BUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2005-1875

Description

Affected Products

References