CVE-2005-4010

N/A Unknown

Published: December 05, 2005 Modified: April 16, 2026

Description

SQL injection vulnerability in KBase Express 1.0.0 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) id parameter to category.php and (2) search parameters to search.php.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://pridels0.blogspot.com/2005/11/kbase-express-sql-inj-vuln.html

Source: cve@mitre.org

http://secunia.com/advisories/17806

Source: cve@mitre.org

Vendor Advisory

http://www.osvdb.org/21340

Source: cve@mitre.org

http://www.osvdb.org/21341

Source: cve@mitre.org

http://www.securityfocus.com/bid/15635

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2005/2641

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/23309

Source: cve@mitre.org

http://pridels0.blogspot.com/2005/11/kbase-express-sql-inj-vuln.html