Back to search
CVE-2005-3325
Published: Oct 27, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple SQL injection vulnerabilities in (1) acid_qry_main.php in Analysis Console for Intrusion Databases (ACID) 0.9.6b20 and (2) base_qry_main.php in Basic Analysis and Security Engine (BASE) 1.2, and unspecified other console scripts in these products, allow remote attackers to execute arbitrary SQL commands via the sig[1] parameter and possibly other parameters.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
17314
third-party-advisory
x_refsource_SECUNIA
20836
vdb-entry
x_refsource_OSVDB
ADV-2005-2188
vdb-entry
x_refsource_VUPEN
15199
vdb-entry
x_refsource_BID
17523
third-party-advisory
x_refsource_SECUNIA
17558
third-party-advisory
x_refsource_SECUNIA
DSA-893
vendor-advisory
x_refsource_DEBIAN
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=336788
x_refsource_CONFIRM
17552
third-party-advisory
x_refsource_SECUNIA
20837
vdb-entry
x_refsource_OSVDB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now