Vulnerabilities > CVE-2005-2466 - SQL Injection vulnerability in Openbook 1.2.2
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
Multiple SQL injection vulnerabilities in the auth_user function in admin.php in OpenBook 1.2.2 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |