CVE-2005-4702
Last modified
CVE-2005-4702 is a vulnerability of currently unknown severity. SQL injection vulnerability in the favorites module in index.php in IPBProArcade 2.5.2 allows remote attackers to inject arbitrary SQL commands via the gameid parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. EPSS estimates a 1.00% chance of exploitation in the next 30 days.
Description
SQL injection vulnerability in the favorites module in index.php in IPBProArcade 2.5.2 allows remote attackers to inject arbitrary SQL commands via the gameid parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. In addition, the demonstration code as used by third parties suggests that this might be a different type of vulnerability related to shell metacharacters. Finally, this could be a rediscovery of CVE-2004-1430.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Ipbproarcade | Ipbproarcade | 2.5.2 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2005-4702?
How severe is CVE-2005-4702?
How do I fix CVE-2005-4702?
Are you affected by CVE-2005-4702?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST