CVE-2005-3682

Published: Nov 18, 2005

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple SQL injection vulnerabilities in Wizz Forum 1.20 allow remote attackers to execute arbitrary SQL commands via (1) the AuthID parameter in ForumAuthDetails.php, and the TopicID parameter in (2) ForumTopicDetails.php and (3) ForumReply.php.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20846

vdb-entry

x_refsource_OSVDB

wizz-forumauthdetails-sql-injection(23170)

vdb-entry

x_refsource_XF

181

third-party-advisory

x_refsource_SREASON

ADV-2005-2421

vdb-entry

x_refsource_VUPEN

20051112 Multible Sql injections in Wizz Forum

mailing-list

x_refsource_BUGTRAQ

20845

vdb-entry

x_refsource_OSVDB

wizz-topicid-sql-injection(23171)

vdb-entry

x_refsource_XF

15410

vdb-entry

x_refsource_BID

17548

third-party-advisory

x_refsource_SECUNIA

20847

vdb-entry

x_refsource_OSVDB

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2005-3682

Description

Affected Products

References