SQL Injection Vulnerability in PortailPHP 1.3: Remote Code Execution via id Parameter

SQL Injection Vulnerability in PortailPHP 1.3: Remote Code Execution via id Parameter

CVE-2005-1701 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in PortailPHP 1.3 allows remote attackers to execute arbitrary SQL commands via the id parameter to the (1) News, (2) File, (3) Liens, or (4) Faq modules.

Learn more about our Web Application Penetration Testing UK.