Security Advisory

CVE-2005-3844

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2005-11-26 22:00:00

Last updated 2024-08-07 23:24:36

Assigner mitre

State PUBLISHED

Description

SQL injection vulnerability in phpWordPress PHP News and Article Manager 3.0 allows remote attackers to execute arbitrary SQL commands via the (1) poll and (2) category parameters to index.php, and (3) the ctg parameter in an archive action.

← Browse all CVEs View on cve.org ↗