Vulnerability Description
Multiple SQL injection vulnerabilities in Nuked Klan 1.7 allow remote attackers to execute arbitrary SQL commands via the (1) forum_id or (2) thread_id parameter in the Forum file, (3) the link_id in the Links file, (4) the artid parameter in the Sections file, and (5) the dl_id parameter in the Download file.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nuked-Klan | Nuked-Klan | 1.7 |
References
- http://marc.info/?l=bugtraq&m=113017972620427&w=2
- http://marc.info/?l=bugtraq&m=113019206306710&w=2
- http://marc.info/?l=bugtraq&m=113019342213796&w=2
- http://secunia.com/advisories/17304/PatchVendor Advisory
- http://www.nuked-klan.org/Patch
- http://www.osvdb.org/20337
- http://www.osvdb.org/20338
- http://www.osvdb.org/20339
- http://www.osvdb.org/20340
- http://www.securityfocus.com/bid/15181
- http://www.vupen.com/english/advisories/2005/2189
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22847
- http://marc.info/?l=bugtraq&m=113017972620427&w=2
- http://marc.info/?l=bugtraq&m=113019206306710&w=2
- http://marc.info/?l=bugtraq&m=113019342213796&w=2
FAQ
What is CVE-2005-3305?
CVE-2005-3305 is a vulnerability with a CVSS score of 7.5 (HIGH). Multiple SQL injection vulnerabilities in Nuked Klan 1.7 allow remote attackers to execute arbitrary SQL commands via the (1) forum_id or (2) thread_id parameter in the Forum file, (3) the link_id in ...
How severe is CVE-2005-3305?
CVE-2005-3305 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-3305?
Check the references section above for vendor advisories and patch information. Affected products include: Nuked-Klan Nuked-Klan.